System Admin Administrators
FortiGate Version 4.0 Administration Guide
01-400-89802-20090424 219
http://docs.fortinet.com/ • Feedback
• create a user group with the TACACS+ server as a member.
To view the TACACS+ server list, go to User > Remote > TACACS+.
Figure 112: Example TACACS+ server list
To configure the FortiGate unit to access the TACACS+ server
1 Go to User > Remote > TACACS+.
2 Select Create New, or select the Edit icon beside an existing TACACS+ server.
3 Enter the Name that identifies the TACACS+ server.
4 For Server Name/IP, enter the server domain name or IP address of the TACACS+
server.
5 For Server Key, enter the key to access the TACACS+ server. The maximum number
is 16.
6 For Authentication Type, enter one of Auto, ASCII, PAP, CHAP, and MSCHAP. Auto
authenticates using PAP, MSCHAP, and CHAP (in that order).
7 Select OK.
For further information about TACACS+ authentication, see “Configuring TACACS+
servers” on page 578.
To create the user group (TACACS+)
1 Go to User > User Group.
2 Select Create New, or select the Edit icon beside an existing user group.
3 Enter a Name that identifies the user group.
4 For Type, select Firewall.
5 In the Available Users/Groups list, select the TACACS+ server name and move it to
the Members list.
6 Select OK.
To configure an administrator to authenticate with a TACACS+ server
1 Go to System > Admin.
2 Select Create New, or select the Edit icon beside an existing administrator.
Create New Add a new TACACS+ server.
Server The server domain name or IP address of the TACACS+ server.
Authentication Type The supported authentication method. TACACS+ authentication
methods include: Auto, ASCII, PAP, CHAP, and MSCHAP.
Delete icon Delete this TACACS+ server
Edit icon Edit this TACACS+ server.
To Next Page
Loading...