Home » Lantronix Manuals » Electronics Accessories » Lantronix SLB » Manual Viewer

Lantronix SLB Lantronix SLB - User Guide - Page 186

TACACS+, To view Kerberos settings

Add to My Manuals
Save this manual to your list of manuals

Page 186 highlights

11: User Authentication To set permissions for Kerberos users not already defined by the user rights group: set kerberos permissions where is one or more of nt, sv, dt, lu, ra, sk, um, dp, ub, rs, rc, dr, wb, sn, ad, po To remove a permission, type a minus sign before the two-letter abbreviation for a user right. To set a default custom menu for Kerberos users: set kerberos custommenu To view Kerberos settings: show kerberos TACACS+ Similar to RADIUS, the main function of TACACS+ is to perform authentication for remote access. The SLB supports the TACACS+ protocol (not the older TACACS or XTACACS protocols). The system administrator can configure the SLB to use TACACS+ to authenticate users attempting to log in using the Web, Telnet, SSH, or the console port. Users who are authenticated through Kerberos are granted device port access through the port permissions on this page. All Kerberos users are members of a group that has predefined user rights associated with it. You can add additional user rights that are not defined by the group. To configure the SLB to use TACACS+ to authenticate users: 1. Click the TACACS+ tab and select TACACS+. The following page displays. SLB - Branch Office Manager User Guide 186

Section	Page
SLB - Branch Office Manager User Guide	1
Copyright & Trademark	2
Open Source Software	2
Contacts	2
Disclaimer & Revisions	2
Revision History	3
Table of Contents	4
List of Figures	13
List of Tables	16
1: About this Guide	17
Purpose and Audience	17
Summary of Chapters	17
Additional Documentation	18
2: Introduction	19
Features	19
Models	22
System Features	23
Application Example	24
Hardware Features	25
3: Installation	29
What's in the Box	29
Technical Specifications	30
Physical Installation	31
Typical Installations	35
4: Quick Setup	36
Recommendations	36
IP Address	36
Method #1 Using the Front Panel Display	37
Method #2 Quick Setup on the Web Page	40
Method #3 Quick Setup on the Command Line Interface	42
Next Step	45
5: Web and Command Line Interfaces	46
Web Interface	46
Command Line Interface	48
6: Basic Parameters	52
Requirements	52
IP Filter	58
IP Filter Commands	62
Routing	63
VPN	65
7: Services	68
System Logging and Other Services	68
SSH/Telnet/Logging	68
SNMP	72
NFS and SMB/CIFS	75
Secure Lantronix Network	77
Date and Time	82
Web Server	84
iGoogle Gadgets	88
8: Device Ports	90
Connection Methods	90
Permissions	90
Device Status	91
Global Port Settings	91
Device Ports - Settings	94
Interacting with a Device Port	106
Device Ports - Logging	107
Console Port	112
Power Outlets	114
Host Lists	117
Scripts	121
Sites	134
Modem Dialing States	137
9: USB Port	141
Set Up of USB Storage	141
Manage Firmware and Configuration Files	148
USB Commands	148
10: Connections	150
Typical Setup Scenarios for the SLB	150
11: User Authentication	157
Local and Remote User Settings	160
NIS	168
LDAP	171
RADIUS	176
Kerberos	182
TACACS+	186
Groups	190
SSH Keys	193
Custom Menus	199
12: Maintenance	206
SLB Maintenance	206
Audit Log	219
Email Log	220
Diagnostics	221
Status/Reports	225
Emailing Logs and Reports	227
Events	230
LCD/Keypad	232
Banners	234
13: Application Examples	236
Dial-in (Text Mode) to a Remote Device	238
Local Serial Connection to Network Device via Telnet	239
14: Command Reference	241
Introduction to Commands	241
Administrative Commands	243
Audit Log Commands	251
Authentication Commands	251
Kerberos Commands	252
LDAP Commands	253
Local Users Commands	254
NIS Commands	257
RADIUS Commands	258
TACACS+ Commands	259
User Permissions Commands	260
CLI Commands	262
Connection Commands	264
Custom User Menu Commands	267
Date and Time Commands	269
Device Commands	270
Device Port Commands	271
Diagnostic Commands	274
End Device Commands	276
Events Commands	277
Group Commands	278
Host List Commands	279
IP Filter Commands	280
Logging Commands	281
Network Commands	282
NFS and SMB/CIFS Commands	285
Power Commands	286
Routing Commands	287
Services Commands	288
SLB Network Commands	289
SSH Key Commands	290
Status Commands	292
System Log Commands	294
USB Storage Commands	294
USB Modem Commands	295
Appendix A: Bootloader	297
Accessing the Bootloader	297
Bootload Commands	297
Appendix B: Security Considerations	298
Security Practice	298
Factors Affecting Security	298
Appendix C: Safety Information	299
Safety Precautions	299
Appendix D: Adapters and Pinouts	301
Appendix E: Protocol Glossary	304

Match case Limit results 1 per page

11: User Authentication

SLB - Branch Office Manager User Guide

186

To set permissions for Kerberos users not already defined by the user rights group:

set kerberos permissions <Permission List>

where

<Permission List> is one or more of nt, sv, dt, lu, ra, sk, um, dp, ub,

rs, rc, dr, wb, sn, ad, po

To remove a permission, type a minus sign before the two-letter abbreviation for a user

right.

To set a default custom menu for Kerberos users:

set kerberos custommenu <Menu Name>

To view Kerberos settings:

show kerberos

TACACS+

Similar to RADIUS, the main function of TACACS+ is to perform authentication for remote access.

The SLB supports the TACACS+ protocol (not the older TACACS or XTACACS protocols).

The system administrator can configure the SLB to use TACACS+ to authenticate users

attempting to log in using the Web, Telnet, SSH, or the console port.

Users who are authenticated through Kerberos are granted device port access through the port

permissions on this page.

All Kerberos users are members of a group that has predefined user rights associated with it. You

can add additional user rights that are not defined by the group.

To configure the SLB to use TACACS+ to authenticate users:

Click the

TACACS+

tab and select

TACACS+

. The following page displays.