From 44b55bafc4938ba7ffea056264d53035a6dff8a0 Mon Sep 17 00:00:00 2001 From: Stephen Hemminger Date: Fri, 24 Apr 2009 11:44:18 -0700 Subject: New tacacs+ configuration templates Template change only. TACACS+ support is still not complete but this shows the syntax for configuration. --- templates/system/login/tacacs-plus/acct-all/node.def | 1 - templates/system/login/tacacs-plus/debug/node.def | 1 - templates/system/login/tacacs-plus/first-hit/node.def | 1 - templates/system/login/tacacs-plus/no-encrypt/node.def | 1 - templates/system/login/tacacs-plus/node.def | 3 --- templates/system/login/tacacs-plus/protocol/node.def | 2 -- templates/system/login/tacacs-plus/secret/node.def | 2 -- templates/system/login/tacacs-plus/server/node.def | 3 --- templates/system/login/tacacs-plus/service/node.def | 2 -- templates/system/login/tacplus-server/node.def | 4 ++++ templates/system/login/tacplus-server/node.tag/secret/node.def | 2 ++ templates/system/login/tacplus-server/node.tag/timeout/node.def | 3 +++ 12 files changed, 9 insertions(+), 16 deletions(-) delete mode 100644 templates/system/login/tacacs-plus/acct-all/node.def delete mode 100644 templates/system/login/tacacs-plus/debug/node.def delete mode 100644 templates/system/login/tacacs-plus/first-hit/node.def delete mode 100644 templates/system/login/tacacs-plus/no-encrypt/node.def delete mode 100644 templates/system/login/tacacs-plus/node.def delete mode 100644 templates/system/login/tacacs-plus/protocol/node.def delete mode 100644 templates/system/login/tacacs-plus/secret/node.def delete mode 100644 templates/system/login/tacacs-plus/server/node.def delete mode 100644 templates/system/login/tacacs-plus/service/node.def create mode 100644 templates/system/login/tacplus-server/node.def create mode 100644 templates/system/login/tacplus-server/node.tag/secret/node.def create mode 100644 templates/system/login/tacplus-server/node.tag/timeout/node.def diff --git a/templates/system/login/tacacs-plus/acct-all/node.def b/templates/system/login/tacacs-plus/acct-all/node.def deleted file mode 100644 index 22522f17..00000000 --- a/templates/system/login/tacacs-plus/acct-all/node.def +++ /dev/null @@ -1 +0,0 @@ -help: Send TACACS+ accounting requests to all servers diff --git a/templates/system/login/tacacs-plus/debug/node.def b/templates/system/login/tacacs-plus/debug/node.def deleted file mode 100644 index 10aa10b1..00000000 --- a/templates/system/login/tacacs-plus/debug/node.def +++ /dev/null @@ -1 +0,0 @@ -help: Enable TACACS+ debugging diff --git a/templates/system/login/tacacs-plus/first-hit/node.def b/templates/system/login/tacacs-plus/first-hit/node.def deleted file mode 100644 index 18f2fdf6..00000000 --- a/templates/system/login/tacacs-plus/first-hit/node.def +++ /dev/null @@ -1 +0,0 @@ -help: Set TACACS+ to try multiple servers if a negative auth is returned diff --git a/templates/system/login/tacacs-plus/no-encrypt/node.def b/templates/system/login/tacacs-plus/no-encrypt/node.def deleted file mode 100644 index 7aa90dfb..00000000 --- a/templates/system/login/tacacs-plus/no-encrypt/node.def +++ /dev/null @@ -1 +0,0 @@ -help: Set TACACS+ to not encrypt communications diff --git a/templates/system/login/tacacs-plus/node.def b/templates/system/login/tacacs-plus/node.def deleted file mode 100644 index d8eab559..00000000 --- a/templates/system/login/tacacs-plus/node.def +++ /dev/null @@ -1,3 +0,0 @@ -help: Set TACACS+ server authentication -commit:expression: $VAR(server) != "" && $VAR(secret) != "" - ; "One server and a secret must be specified for TACACS+" diff --git a/templates/system/login/tacacs-plus/protocol/node.def b/templates/system/login/tacacs-plus/protocol/node.def deleted file mode 100644 index 6a5c739d..00000000 --- a/templates/system/login/tacacs-plus/protocol/node.def +++ /dev/null @@ -1,2 +0,0 @@ -type: txt -help: Set TACACS+ protocol for authentication and accounting diff --git a/templates/system/login/tacacs-plus/secret/node.def b/templates/system/login/tacacs-plus/secret/node.def deleted file mode 100644 index 0f673ae2..00000000 --- a/templates/system/login/tacacs-plus/secret/node.def +++ /dev/null @@ -1,2 +0,0 @@ -type: txt -help: Set TACACS+ secret diff --git a/templates/system/login/tacacs-plus/server/node.def b/templates/system/login/tacacs-plus/server/node.def deleted file mode 100644 index dc1b1e94..00000000 --- a/templates/system/login/tacacs-plus/server/node.def +++ /dev/null @@ -1,3 +0,0 @@ -multi: -type: ipv4 -help: Set TACACS+ server IP addresses diff --git a/templates/system/login/tacacs-plus/service/node.def b/templates/system/login/tacacs-plus/service/node.def deleted file mode 100644 index 10d1729b..00000000 --- a/templates/system/login/tacacs-plus/service/node.def +++ /dev/null @@ -1,2 +0,0 @@ -type: txt -help: Set TACACS+ service for authentication and accounting diff --git a/templates/system/login/tacplus-server/node.def b/templates/system/login/tacplus-server/node.def new file mode 100644 index 00000000..7fe9cc27 --- /dev/null +++ b/templates/system/login/tacplus-server/node.def @@ -0,0 +1,4 @@ +tag: +type: txt +help: Set TACACS+ server IP addresses +commit:expression: $VAR(secret) != "" ; "secret must be specified for TACACS+" diff --git a/templates/system/login/tacplus-server/node.tag/secret/node.def b/templates/system/login/tacplus-server/node.tag/secret/node.def new file mode 100644 index 00000000..0f673ae2 --- /dev/null +++ b/templates/system/login/tacplus-server/node.tag/secret/node.def @@ -0,0 +1,2 @@ +type: txt +help: Set TACACS+ secret diff --git a/templates/system/login/tacplus-server/node.tag/timeout/node.def b/templates/system/login/tacplus-server/node.tag/timeout/node.def new file mode 100644 index 00000000..8ce5f585 --- /dev/null +++ b/templates/system/login/tacplus-server/node.tag/timeout/node.def @@ -0,0 +1,3 @@ +type: u32 +help: Set TACACS+ server connection timeout in seconds +default: 3 -- cgit v1.2.3