Root cause

Admin AAA TACACS

- Authentication only supports ASCII

- Authorization implementation is incomplete
Solution

admin aaa server es02 <host_name|ip_address> <port> [secret] [auth_type] [author_service]

- Add command parameter: Authentication supports ASCII, PAP, CHAP. Default is “ASCII“.

- Add command parameter: Authorization custom service. Default is “array_author“.

Create TACACS service on RockyLinux9.5.
APV config and SSH login with other clients.

The following two cases: test each auth_type option — ASCII, PAP, CHAP

- admin aaa authorize off, All TACACS accounts log in with "config" authorization.

- admin aaa authorize on, priv-lvl = 15 → "config", Others → "enable".

- After restarting the APV, perform the test for the last configuration.
For more detailed information, please refer to: 

https://arraynetworks.atlassian.net/browse/TWSD-1029