|
|
This chapter describes the function and displays the syntax for the commands used to configure your router to act as an AppleTalk Remote Access (ARA) server. For more information about defaults and usage guidelines, see the corresponding chapter of the Dial Solutions Command Reference.
To enable TACACS+ authentication for ARA on a line, use the arap authentication line configuration command. Use the no form of the command to disable authentication for an ARA line.
arap authentication {default | list-name}| default | Use the default list created with the aaa authentication arap command. |
| list-name | Use the indicated list created with the aaa authentication arap command. |
To configure a line to be used only as an ARA connection, use the arap dedicated line configuration command. Use the no form of the command to return the line to interactive mode.
arap dedicatedTo enable ARA for a line, use the arap enable line configuration command. Use the no form of this command to disable ARA.
arap enableTo control Macintosh access to networks, use the arap net-access-list line configuration command. Use the no form of this command to return to the default setting.
arap net-access-list net-access-list-number| net-access-list-number | One of the list values configured using the AppleTalk access-list cable-range, access-list includes, access-list network, access-list other-access, and access-list within commands. |
To create a new network/zone and cause it to be advertised, use the arap network global configuration command. Use the no form of this command to prevent a new network/zone from being advertised.
arap network [network-number] [zone-name]| network-number | (Optional) AppleTalk network number. The network number must be unique on your AppleTalk network. This network is where all ARAP users appear when they dial in to the network. |
| zone-name | (Optional) AppleTalk zone name. |
To prevent Macintosh guests from logging in to the router, use the arap noguest line configuration command. Use the no form of this command to remove this restriction.
arap noguest [if-needed]| if-needed | (Optional) Does not authenticate if the user already provided authentication. This allows users to log in as guests if they have already been authenticated through a username and/or password. |
To require users to enter their password manually at the time they log in, use the arap require-manual-password line configuration command.
arap require-manual-passwordTo set the maximum length of an ARA session for a line, use the arap timelimit line configuration command. Use the no form of this command to return to the default of unlimited session length.
arap timelimit [minutes]| minutes | (Optional) Maximum length of time (in minutes) for a session. |
To enable TACACS for ARAP authentication, use the arap use-tacacs line configuration command. Use the no form of this command to disable TACACS for ARAP authentication.
arap use-tacacs [single-line]| single-line | (Optional) Accepts the username and password in the username field. If you are using an older version of TACACS, (before Extended TACACS) you must use this keyword. |
To set when a disconnect warning message is displayed, use the arap warningtime line configuration command. Use the no form of this command to disable this function.
arap warningtime [minutes]| minutes | (Optional) Amount of time, in minutes, before the configured session time limit. At the configured amount of time before a session is to be disconnected, the router sends a message to the Macintosh client, which causes a warning message to appear on the user's screen. |
To control what zones the Macintosh client sees, use the arap zonelist line configuration command. Use the no form of this command to disable the default setting.
arap zonelist zone-access-list-number| zone-access-list-number | One of the list values configured using the AppleTalk access-list zone or access-list additional-zones commands. |
To display information about a running ARAP connection, use the show arap user EXEC command.
show arap [line-number]| line-number | (Optional) Number of the line on which an ARAP connection is established and active. |
|
|