12: User Authentication
SLC™ Console Manager User Guide 198
To remove a permission, type a minus sign before the two-letter abbreviation for a user
right.
To set a default custom menu for TACACS+ users:
set tacacs+ custommenu <Menu Name>
To view TACACS+ settings:
show tacacs+
Groups
The SLC console manager has 3 pre-defined groups: Administrators, Power Users, and Default
Users. Custom groups can also be created; each custom group is a set of user attributes and
permissions. Local Users and Remote Users defined on the SLC unit can be assigned to one of
the pre-defined groups or a custom group. When a user authenticates, if they belong to custom
group, they will be granted the custom group attributes and permissions, rather than their
individual attributes and permissions. The SLC device supports querying a LDAP server for groups
that a LDAP user is a member of; if any of the LDAP group names match a (Custom Group Name),
the LDAP user will be granted the rights of the custom group.
A custom group cannot be given the name of one of the pre-defined groups: "Admin", "Power" or
"Default" (or any version of these names where the case of the letters is different) since these
names are used for the SLC pre-defined groups. Any LDAP group that matches one of these pre-
defined group names will be ignored and not used to assign rights to a user.
To configure Groups in the SLC console manager:
1. From the main menu, select User Authentication - Groups. The following page displays.
Note: If the fields in the lower part of the page have been populated by viewing another
group, the fields can be cleared by selecting the Reset Group button.
To Next Page
Loading...
Need help?
General