Closed
Conversation
liuqu
commented
Nov 30, 2017
liuqu
commented
- Add TACACS+ testcase
- Add username and password for TACACS+ server
* Add TACACS+ testcase * Add username and password for TACACS+ server
maggiemsft
reviewed
Dec 7, 2017
| ptf-1 ansible_host=10.0.0.200 ansible_ssh_user=root ansible_ssh_pass=password | ||
|
|
||
| [tacacs_server] | ||
| tacacs_server ansible_host=10.0.0.9 ansible_ssh_user=root ansible_ssh_pass=root |
Contributor
There was a problem hiding this comment.
@liuqu are you using the default ptf docker within the testbed? I didn't closely follow up PRs in sonic-buildimage, is this server been included and deployed with testbed ptf docker?
did you add your Tacacs+ design/testing document to sonic/wiki so the community member can follow? (I remembered last time it's from your own repo)
Author
There was a problem hiding this comment.
Sorry too late to reply. You can find the the test plan in TACACS+ Test Plan.md
TACACS+ server is a host which installed tac_plus, not included in ptf docker. This configuration is used to save the username and password to ensure that TACACS+ server can be logined to execute sudo command.
Author
There was a problem hiding this comment.
The feature source address for TACACS+ is needed for source address test. It will be pulled request after the current PRs are merged.
lguohan
reviewed
Dec 12, 2017
| become: true | ||
| shell: config aaa authentication failthrough default | ||
|
|
||
| # Test source address |
Contributor
There was a problem hiding this comment.
admin@str-s6000-on-4:~$ sudo config tacacs src_ip
Usage: config tacacs [OPTIONS] COMMAND [ARGS]...
Error: No such command "src_ip".
Contributor
There was a problem hiding this comment.
since src_ip is not supported in current version, I suggest to remove the src_ip test.
lguohan
reviewed
Dec 12, 2017
| service: | ||
| name: tac_plus | ||
| state: started | ||
| delegate_to: "{{ tacacs_server }}" |
Contributor
There was a problem hiding this comment.
suggest to move tacacs_server, passkey, test username, passwd all into test inventory. Make this as a testbed requirement, and leave the tacacs+ server setup outside of the test.
I suggest also remove the starting tacacs+ service and add comment indicating whoever perform the testbed needs to setup tacacs service manually to enable the test user and passwd and passkey.
Author
There was a problem hiding this comment.
Some comments have been added to inform user which setup need for TACACS+ testbed. The tacacs+ passkey, user account and password already moved to group_vars/lab/lab.yml
* The feature source address for TACACS+ hasn't been merged in current version, so remove src_ip test temporarily. * Remove configuration for TACACS+ service * Move TACACS+ passkey, user account and password to group_vars/lab/lab.yml * Move configure, testcase and cleanup to one file, remove redundant files. Signed-off-by: Chenchen Qi <[email protected]>
Contributor
|
superceded by #1428 |
kazinator-arista
pushed a commit
to kazinator-arista/sonic-mgmt
that referenced
this pull request
Mar 4, 2026
… automatically (sonic-net#15133) src/sonic-platform-common * ff72811 - (HEAD -> 202205, origin/202205) Fix issue '<' not supported between instances of 'NoneType' and 'int' (sonic-net#371) (5 hours ago) [Junchao-Mellanox] * f2a419d - Render Media lane and Media assignment options info from Application Code (sonic-net#368) (8 hours ago) [rajann] * d8bad10 - Retrieve FW version using CDB command for CMIS transceivers + handle single bank FW versioning (sonic-net#372) (8 hours ago) [mihirpat1]
kazinator-arista
pushed a commit
to kazinator-arista/sonic-mgmt
that referenced
this pull request
Mar 4, 2026
…D automatically (sonic-net#15347) src/sonic-platform-daemons * a90bff5 - (HEAD -> 202205, origin/202205) [ycabled] correct the wrong function call for 'config hwmode state' (sonic-net#372) (5 minutes ago) [vdahiya12]
kazinator-arista
pushed a commit
to kazinator-arista/sonic-mgmt
that referenced
this pull request
Mar 4, 2026
…D automatically (sonic-net#15366) src/sonic-platform-daemons * 18815c7 - (HEAD -> 202205, origin/202205) Revert "[ycabled] refactor code for onboarding async client changes;refactor (sonic-net#355)" (3 minutes ago) [Ying Xie] * 5324554 - Revert "add async notification support in active-active topo; refactor code for ycable tasks for change events (sonic-net#327)" (3 minutes ago) [Ying Xie] * cbbe2b5 - Revert "[ycabled] fix bug for `show mux status` delayed response (sonic-net#364)" (3 minutes ago) [Ying Xie] * 9746709 - Revert "[dualtor] Fix command `show mux status` (sonic-net#371)" (3 minutes ago) [Ying Xie] * 551ab3c - Revert "[ycabled] correct the wrong function call for 'config hwmode state' (sonic-net#372)" (3 minutes ago) [Ying Xie]
kazinator-arista
pushed a commit
to kazinator-arista/sonic-mgmt
that referenced
this pull request
Mar 4, 2026
…D automatically (sonic-net#15749) src/sonic-platform-daemons * 112656c - (HEAD -> 202205, origin/202205) [ycabled][active-active] no initialize Async Client, when no active-active cable type; fix names for all ycabled threads (sonic-net#373) (4 minutes ago) [vdahiya12] * e325d5a - Revert "Revert "[ycabled] correct the wrong function call for 'config hwmode state' (sonic-net#372)"" (4 minutes ago) [Ying Xie] * ddabca1 - Revert "Revert "[dualtor] Fix command `show mux status` (sonic-net#371)"" (4 minutes ago) [Ying Xie] * 28918da - Revert "Revert "[ycabled] fix bug for `show mux status` delayed response (sonic-net#364)"" (4 minutes ago) [Ying Xie] * a849de9 - Revert "Revert "add async notification support in active-active topo; refactor code for ycable tasks for change events (sonic-net#327)"" (4 minutes ago) [Ying Xie] * cf1e73a - Revert "Revert "[ycabled] refactor code for onboarding async client changes;refactor (sonic-net#355)"" (4 minutes ago) [Ying Xie]
kazinator-arista
pushed a commit
to kazinator-arista/sonic-mgmt
that referenced
this pull request
Mar 4, 2026
… automatically (sonic-net#16332) #### Why I did it src/sonic-platform-common ``` * 05cf5c1 - (HEAD -> 202211, origin/202211) Change Y cable simulator log level from error to warning due to false alarm (11 hours ago) [ShiyanWangMS] * 35ea290 - Update CMIS api's rendering max-duration (sonic-net#375) (11 hours ago) [rajann] * 33bd498 - Retrieve FW version using CDB command for CMIS transceivers + handle single bank FW versioning (sonic-net#372) (11 hours ago) [mihirpat1] * 2434362 - Render Media lane and Media assignment options info from Application Code (sonic-net#368) (11 hours ago) [rajann] * 862674b - Modify sfputil show fwversion to include build version for active/inactive FW version fields (sonic-net#367) (11 hours ago) [mihirpat1] * 8edfece - Adding electrical for 800G and 100G (sonic-net#365) (11 hours ago) [mihirpat1] * 8a1debf - SFF-8472: Fix tx_disable_channel to avoid write to read-only bit (sonic-net#364) (11 hours ago) [mihirpat1] * 223a231 - Update host electrical interface for 2x400G breakout cable (sonic-net#363) (11 hours ago) [mihirpat1] * baabd8f - fix get module hardware minor revision (sonic-net#361) (11 hours ago) [Qingxiao Ren] * 2ebabf5 - Prevent VDM dictionary related KeyError when a transceiver module is pulled while a bulk get method is interrogating said module (sonic-net#360) (11 hours ago) [snider-nokia] * 1498ed6 - [CMIS] Add API to get module power up duration (sonic-net#354) (11 hours ago) [ChiouRung Haung] * 1cae718 - Modify get_host_lane_assignment_option to return value based on application id (sonic-net#352) (11 hours ago) [mihirpat1] ``` #### How I did it #### How to verify it #### Description for the changelog
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
3 participants
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.