Network Management

 View Only
Back to discussions
Expand all | Collapse all

IMC Tacacs+ (TAM) support for Vendor-Specific Attributes?

This thread has been viewed 0 times

  • 1.  IMC Tacacs+ (TAM) support for Vendor-Specific Attributes?

    Posted Jul 21, 2014 07:13 PM

    Anyone know if TAM supports vendor-specific attributes?  I want to setup an attribute mapped to Vendor ID: 2636.

    Unfortunately, I've tried adding these attributes to the shell profile without luck.  I need to set it up where the Vendor ID is used.

    In tacplus, I would just add service = junos-exec { local-user-name="remote-ro" allow-commands="show|monitor" }

    Apparently, tacplus knows that the "junos-exec" service is mapped to vendorID: 2636, but can't find a way in TAM.  I suppose I'm out of luck for authorization, and will have to stick with authentication for now.  Not very flexible that way.  :(

    Anyone have thoughts or ideas?
    Thanks!



  • 2.  RE: IMC Tacacs+ (TAM) support for Vendor-Specific Attributes?

    Posted Jul 30, 2014 12:02 PM

    Hi Neelixx,

     

    Your question has been passed along to R&D for a response. I'll let you know what I hear.

     

    L-M



Related Content