126 SyncServer 600 Series User’s Guide 098-00720-000 Revision D1 – February, 2018
Chapter 4
Navigation Windows
For RADIUS and LDAP, the additional servers are used for "fail over" purpose. They
are used only when the prior server in the list is not reachable. The first reachable
server is going to authenticate the username and password. The result of the
authentication is the result for the entire remote authentication, meaning that it is not
going to use the additional servers to authenticate further. If the authentication
succeeds, the user is allowed to login to the SyncServer. If the authentication fails,
the SyncServer continues its local authentication using the local users list.
Figure 4-44. Security - RADIUS Configuration Window
Security - TACACS+ Configuration Window
Use this window to enable and configure TACACS+ authentication. Up to 5
TACACS+ servers can be configured. See Figure 4-45. After entering the TACACS+
information, click the green "+" icon to add the row. Then click the "save" icon to
save the information.
Note:
RADIUS key: 1-16 characters
Note: The SyncServer S600/S650 has only one level of management
access of Authentication/Authorization and that is full control. There is
no read-only management access. Therefore
Authentication = Authorization when there is only one level of
management access.
Note: In order to use RADIUS authentication with the SSH login, a
local user must be created with the same username as used with
RADIUS. This is not necessary for the web login.
Note: RADIUS is designed to be used with LAN1. Do not configure a
RADIUS server address in a subnet used by the other LAN ports
(LAN2 - LAN6).
To Next Page
Loading...
