Field Description
Server IP Address Enter the IP address of the TACACS+ server that is to be re-
quested for login authentication.
TACACS+ Secret Enter the password to be used to authenticate and, if applic-
able, encrypt data exchange between the TACACS+ server and
the network access server (your device). The maximum length
of the entry is 32 characters.
Priority Assign a priority to the current TACACS+ server. The server
with the lowest value is the one used first for TACACS+ login
authentication. If this does not respond or access is denied
(only if Policy = Non-authoritative), the entry with the
next-highest priority is used.
The available values are 0 to 9, the default value is 0.
Entry Active Select whether this server is to be used for login authentication.
The function is activated by choosing Enabled.
The function is enabled by default.
The Advanced Settingsmenu consists of the following fields:
Fields in the menu Advanced Settings
Field Description
Policy Select the interpretation of the TACACS+ response.
Possible values:
• Non-authoritative (default value): The TACACS+ serv-
ers are queried in order of their priority (see Priority) until a
positive response is received or a negative response is re-
ceived from an authoritative server.
• Authoritative : A negative response to a request is ac-
cepted, i.e. a request is not sent to another TACACS+ server.
The device's internal user administration is is not turned off by
TACACS+. It is checked after all TACACS+ servers have been
queried.
TCP Port The default TCP port ( 49). The value cannot be changed.
Timeout Enter time in seconds for which the NAS is to wait for a re-
sponse from TACACS+.
Funkwerk Enterprise Communications GmbH
8 System management
bintec W1002/W1002n/W2002/WIx040/WIx065 115
To Next Page
Loading...
Need help?
General
