EasyManua.ls Logo

Alcatel-Lucent AOS-W 6.5.3.x - Page 194

Alcatel-Lucent AOS-W 6.5.3.x
1160 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Parameter Description
Host IP address of the server.
Default: N/A
Key Shared secret to authenticate communication between the TACACS+ client and
server.
Default: N/A
TCP Port TCP port used by server.
Default: 49
Retransmits Maximum number of times a request is retried.
Default: 3
Timeout Timeout period for TACACS+ requests, in seconds.
Default: 20 seconds
Mode Enables or disables the server.
Default: enabled
Session
Authorization
Enables or disables session authorization. Session authorization turns on the
optional authorization session for admin users.
Default: disabled
Source Interface Enter a VLAN number ID.
Allows you to use source IP addresses to differentiate TACACS requests.
Associates a VLAN interface with the TACACSserver to allow the server-specific
source interface to override the global configuration.
n If you associate a Source Interface (by entering a VLAN number) with a
configured server, then the source IP address of the packet is that interface’s IP
address.
n If you do not associate the Source Interface with a configured server (leave the
field blank), the IP address of the global Source Interface is used.
Table 48: TACACS+ Server Configuration Parameters
Using the WebUI
1. Navigate to the Configuration > Security > Authentication > Servers page.
2. Select TACACS Server to display the TACACS Server List.
3. To configure a TACACS+ server, enter the name for the server and click Add.
4. Select the name to configure server parameters. Enter parameters as described in Table 48. Select the
Mode checkbox to activate the authentication server.
5. Click Apply.
The configuration does not take effect until you perform this step.
Using the CLI
The following command configures, enables a TACACS+ server and enables session authorization:
(host)(config) #aaa authentication-server tacacs <name>
Source Interface
AOS-W 6.5.2.0 introduces the Source Interface parameter. This parameter provides a customer the option of
specifying the source IP for a TACACS server. The source IP specified in the TACACS server overrides the one in
AOS-W 6.5.3.x | User Guide Authentication Servers | 194

Table of Contents