tacacs-server host 10.10.0.1 single-connection tacacs-server directed-request tacacs-server key 7 cisco #双向加密(type 7) : 命令service password-encryption自动对配置中的密码加密。
ip tacacs source-interface Loopback0 tacacs-server host 192.168.1.100 tacacs-server key 7 113A100B18302928 ASR 9K配置 tacacs source-interface Loopback0 vrf default tacacs-server host 192.168.1.100 port 49 ! tacacs-server key 7 113A100B18302928 ! aaa accounting commands default start-stop group ...
# hwtacacs-server template t1 hwtacacs-server authentication 10.1.1.2 hwtacacs-server authorization 10.1.1.2 hwtacacs-server accounting 10.1.1.2 hwtacacs-server shared-key cipher %^%#!~;V,L$O!#P7jD#k]wgL)ChiX74XR-)jn.:m={!<%^%# # 配置...
n7k-vdc-1# show logging logfile last 52013 May 13 18:20:26.077572 tacacs: tplus_encrypt(655):key is configured for this aaa session.2013 May 13 18:20:26.077918 tacacs: non_blocking_connect(171): getaddrinfoDNS cache fail) with retcode:-1 for server:192.0...
# hwtacacs-server template t1 hwtacacs-server authentication 10.1.1.2 hwtacacs-server authorization 10.1.1.2 hwtacacs-server accounting 10.1.1.2 hwtacacs-server shared-key cipher %^%#!~;V,L$O!#P7jD#k]wgL)ChiX74XR-)jn.:m={!<%^%# # ...
#hwtacacs-server template ckey//建立“ckey”hwtacacs服务器模板hwtacacs-server authentication xxx.xxx.xxx.xxx//认证服务器地址hwtacacs-server authorization xxx.xxx.xxx.xxx//授权服务器地址hwtacacs-server accounting xxx.xxx.xxx.xxx//审计服务器地址hwtacacs-server shared-key cipher ***//配置共享...
ip local pool async 10.6.100.101 10.6.100.103 tacacs-server host 171.68.118.101 tacacs- server timeout 10 tacacs-server key cisco ! line 1 session-timeout 20 exec-timeout 120 0 autoselect during- login script startup default script reset default modem Dialin transport input all stopbits 1 ...
KEY=pwd各个字节分别左移一位 ChallengeResponse=DES(ServerChallenge,KEY);challenge一般为8字节 图2-4-5-3 ARAP authentication组成 2.5 TACACS+数据包的加密 TACACS+支持除包头之外所有信息的加密,加密方法如下: 1) 将session_id、secret key, 版本号和sequence number一起进行MD5运算(其中secret key 为TACACS客...
KEY=pwd各个字节分别左移一位 ChallengeResponse=DES(ServerChallenge,KEY);challenge一般为8字节 图2-4-5-3 ARAP authentication组成 2.5 TACACS+数据包的加密 TACACS+支持除包头之外所有信息的加密,加密方法如下: 1) 将session_id、secret key, 版本号和sequence number一起进行MD5运算(其中secret key 为TACACS客...
setenv LDAP_SERVER_TYPE = “microsoft”setenv LDAP_HOSTS = “10.10.0.3:3268 TestDC-tacacs:3268″setenv LDAP_BASE = “dc=test,dc=cn”setenv LDAP_USER = “tacacs@test.cn”setenv LDAP_PASSWD = “abcd.1234″setenv REQUIRE_TACACS_GROUP_PREFIX = 1 exec = /usr/local/lib/mavis/mavis_...