098-00720-000 Revision D1 – February, 2018 SyncServer 600 Series User’s Guide 127
Chapter 4
Navigation Windows
The SyncServer S6xx software supports remote authentication using RADIUS,
TACACS+ and LDAP servers. The authentication process with multiple remote
authentication servers is different among the RADIUS, TACACS+ and LADP
servers.
For TACACS+, the additional servers are used for "iterative" purpose. Whenever a
server successful authenticates the username and password, it completes the
entire remote authentication. Otherwise, the authentication continues with the next
configured server. This process goes on until it uses all the authentication servers.
The SyncServer local authentication happens last.
Figure 4-45. Security - TACACS+ Configuration Window
Note:
TACACS+ key: 1-16 characters
Note: TACACS+ is designed to be used with LAN1. Do not configure
a TACACS+ server address in a subnet used by the other LAN ports
(LAN2 - LAN6).
Note: The SyncServer S600/S650 has only one level of management
access of Authentication/Authorization and that is full control. There is
no read-only management access. Therefore
Authentication = Authorization when there is only one level of
management access.
Note: In order to use TACACS+ authentication with the SSH login, a
local user must be created with the same username as used with
TACACS+. This is not necessary for the web login.
To Next Page
Loading...
