| Overview | Package | Class | Deprecated | Help |
| Properties | |
|---|---|
| accountingType |
accountingType is used to configure the type of
accounting record packet that is to be sent to the TACACS+ server.
The value indicates whether TACACS+ accounting start and stop
packets be sent or just stop packets be sent. TACACS+ start packet
is sent whenever the user executes a command. A stop packet is sent
whenever the command execution is complete.
The default value for this object is 'stopOnly'.
type=int default=stopOnly Displayed(tab/group)=Accounting Type enums= 1: startStop - Start and Stop 2: stopOnly - Stop Only |
| singleConnection |
Obsolete.
DEPRECATED: 8.0 - Never worked on node type=boolean default=false |
| sitesec.PrivilegeLevelMap-Set |
type=Children-Set |
| sitesec.TacacsEntry-Set |
type=Children-Set |
| tacPlusRoutePref |
The value of tacPlusRoutePref specifies the routing preference for
traffic generated for authentication, authorization and accounting on
a TACACS+ server.
A value of 'inband' specifies that the TACACS+ utility will attempt to
use the Base routing context to send packets to remote destinations.
A value of 'outband' specifies that the TACACS+ utility will attempt
to use the management routing context to send packets to remote
destinations.
A value of 'both' specifies that the TACACS+ utility will first
attempt to use the management router context to send packets to remote
TACACS+ server. If the TACACS+ server is not reachable via management
router context, the Base router context will be attempted.
The default value for this object is 'both'.
type=sitesec.RoutePrefType default=both Displayed(tab/group)=Route Preference |
| templateUsedByTacplus |
The value of templateUsedByTacplus specifies whether
the TACACS+ user template is actively applied to the
TACACS+ user. When the value of tmnxTacplusUseTemplate
is set to 'TRUE', the TACACS+ user template is actively
applied.
type=generic.TruthValue default=true Displayed(tab/group)=Enable User Template |
| useInteractiveAuth |
The value of useInteractiveAuth specifies whether
interactive authentication is enabled.
If the value of this object is set to 'true(1)', no username
nor password is sent in the TACACS+ authentication START message,
and the server_msg in the TAC_PLUS_AUTHEN_STATUS_GETUSER and
TAC_PLUS_AUTHEN_STATUS_GETPASS authentication REPLY messages from the
TACACS+ server are displayed. The server_msg may contain an S/Key for
one-time password operation.
If the value of this object is set to 'false(2)', the username
and password are sent in the TACACS+ authentication START message
type=generic.TruthValue default=false Displayed(tab/group)=Use Interactive Authentication |
| usePrivLevel |
The value of this attribute specifies whether
the privilege level mapping is used.
When the value of isAuthorizationEnabled is 'true(1)' and the value
of this attribute is 'true(1)', the value of attribute
'privLevel' in the TACACS+ authorization RESPONSE packet
is mapped to the user profile defined in PrivilegeLevelMap.
That user profile is used for authorization.
type=generic.TruthValue default=false Displayed(tab/group)=Use Privilege Map (/Authorization) |
| Properties inherited from sitesec.RemoteAuthPolicy |
|---|
| accountingPort, administrativeState, displayedName, isAccountingEnabled, isAuthorizationEnabled, port, retryAttempts, sourceAddress, sourceAddressType, timeoutSeconds |
| Properties inherited from policy.PolicyObject |
|---|
| description, displayedName, globalPolicy, id, isLocal, policyType, siteId, siteName, templateObject |
| Properties inherited from ManagedObject |
|---|
| actionMask, children-Set, deploymentState, isFaultSquelched, name, objectFullName, selfAlarmed |