EasyManua.ls Logo

Microsemi SyncServer S350 - Admin - Tacacs

Microsemi SyncServer S350
210 pages
Save Page as PDF
Print Icon
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
Web Interface
ADMIN - TACACS+
TACACS+ (Terminal Access Controller Access-Control System Plus) is an access control
network protocol for routers, network access servers and other networked computing
devices.
Unlike RADIUS and the predecessors of TACACS+ (TACACS and XTACACS),
TACACS+ provides separate authentication, authorization and accounting services. Like
RADIUS, TACACS and XTACACS, TACACS+ is an open, publicly documented protocol.
TACACS+ uses the TCP protocol and encrypts the entire packet (except the header).
TACACS+ authentication on the SyncServer is designed to inter-operate with standard com-
pliant TACACS+ servers:
n When TACACS+ is enabled and configured a user can log in to the SyncServer using a
TACACS+ username and password.
n
The SyncServer contacts the TACACS+ server listed on the ADMIN - TACACS+ page until
it receives authentication from a TACACS+ server.
n If TACACS+ authentication fails due to AUTHINFO_UNAVAIL reason (in other words,
server is not available), the SyncServer attempts to authenticate the user against its own
access control list.
The LAN1 port must have access to the authenticating TACACS+ servers.
Extended Character Set for TACACS+ logins
The following character set is available for TACACS+ logins:
~!@#$%^&*()_+|\=-'{}[]:"';<>?/.,
TACACS+ Configuration
For each server, set the following values:
TACACS+ Server IPv4 Address: The TACACS+ server's IPv4 address.
Secret Key: The authentication key shared by the TACACS+ server and the SyncServer.
Enable TACACS+ Authentication: Makes TACACS+ and then standard SyncServer authen-
tication available.
Disable TACACS+ Authentication: Makes TACACS+ authentication unavailable. Only standard
SyncServer authentication is available.
Note: The RADIUS and TACACS+ authentication is exclusive. When RADIUS authen-
tication is enabled, the TACACS+ authentication is automatically disabled. Vice versa, when
TACACS+ authentication is enabled, the RADIUS authentication is disabled. When the Syn-
cServer is started, power on or reboot, if the software detects that both RADIUS and
Page 94..........................................................................997-01520-02 Rev. F1

Table of Contents

Related product manuals