HP BladeSystem bc2800 Embedded Web System User Guide for the HP BladeSystem PC - Page 37

Defining TACACS+ Authentication

Get HP BladeSystem bc2800 - Blade PC PDF manuals and user guides View all HP BladeSystem bc2800 manuals
Add to My Manuals
Save this manual to your list of manuals

Page 37 highlights

Configuring Device Security ◆ RADIUS, Local - Indicates that authentication first occurs at the RADIUS server. If authentication cannot be verified at the RADIUS server, the session is authenticated locally. If the session cannot be authenticated locally, the session is blocked. ◆ Local, RADIUS, None - Indicates that authentication first occurs locally. If authentication cannot be verified locally, the RADIUS server authenticates the management method. If the RADIUS server cannot authenticate the management method, the session is permitted. ◆ RADIUS, Local, None - Indicates that authentication first occurs at the RADIUS server. If authentication cannot be verified at the RADIUS server, the session is authenticated locally. If the session cannot be authenticated locally, the session is permitted. ◆ Local, TACACS+ - Indicates that authentication first occurs locally. If authentication cannot be verified locally, the TACACS+ server authenticates the management method. If the TACACS+ server cannot authenticate the management method, the session is blocked. ◆ TACACS+, Local - Indicates that authentication first occurs at the TACACS+ server. If authentication cannot be verified at the TACACS+ server, the session is authenticated locally. If the session cannot be authenticated locally, the session is blocked. ◆ Local, TACACS+, None - Indicates that authentication first occurs locally. If authentication cannot be verified locally, the TACACS+ server authenticates the management method. If the TACACS+ server cannot authenticate the management method, the session is permitted. ◆ TACACS+, Local, None - Indicates that authentication first occurs at the TACACS+ server. If authentication cannot be verified at the TACACS+ server, the session is authenticated locally. If the session cannot be authenticated locally, the session is permitted. 2. Define the Console, Telnet, and Secure Telnet (SSH) fields. 3. Map the authentication method in the Secure HTTP selection box. 4. Map the authentication method in the HTTP selection box. 5. Click . The authentication mapping is saved, and the device is updated. Defining TACACS+ Authentication Terminal Access Controller Access Control System (TACACS+) provides centralized security user access validation. The system supports up to four TACACS+ servers. TACACS+ provides a centralized user management system, while still retaining consistency with RADIUS and other authentication processes. TACACS+ provides the following services: ■ Authentication - Provides authentication during login and using user names and user-defined passwords. ■ Authorization - Performed at login. Once the authentication session is completed, an authorization session starts using the authenticated user name. The TACACS+ protocol ensures network integrity through encrypted protocol exchanges between the client and TACACS+ server. Embedded Web System User Guide www.hp.com 4-11

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
Embedded Web System User Guide
www.hp.com
4-11
Configuring Device Security
RADIUS, Local
— Indicates that authentication first occurs at the RADIUS server.
If authentication cannot be verified at the RADIUS server, the session is
authenticated locally. If the session cannot be authenticated locally, the session is
blocked.
Local, RADIUS, None
— Indicates that authentication first occurs locally. If
authentication cannot be verified locally, the RADIUS server authenticates the
management method. If the RADIUS server cannot authenticate the management
method, the session is permitted.
RADIUS, Local, None
— Indicates that authentication first occurs at the RADIUS
server. If authentication cannot be verified at the RADIUS server, the session is
authenticated locally. If the session cannot be authenticated locally, the session is
permitted.
Local, TACACS+
— Indicates that authentication first occurs locally. If
authentication cannot be verified locally, the TACACS+ server authenticates the
management method. If the TACACS+ server cannot authenticate the management
method, the session is blocked.
TACACS+, Local
— Indicates that authentication first occurs at the TACACS+
server. If authentication cannot be verified at the TACACS+ server, the session is
authenticated locally. If the session cannot be authenticated locally, the session is
blocked.
Local, TACACS+, None
— Indicates that authentication first occurs locally. If
authentication cannot be verified locally, the TACACS+ server authenticates the
management method. If the TACACS+ server cannot authenticate the management
method, the session is permitted.
TACACS+, Local, None
— Indicates that authentication first occurs at the
TACACS+ server. If authentication cannot be verified at the TACACS+ server, the
session is authenticated locally. If the session cannot be authenticated locally, the
session is permitted.
2. Define the
Console, Telnet
, and
Secure Telnet (SSH)
fields.
3. Map the authentication method in the
Secure HTTP
selection box.
4. Map the authentication method in the
HTTP
selection box.
5. Click
. The authentication mapping is saved, and the device is updated.
Defining TACACS+ Authentication
Terminal Access Controller Access Control System
(TACACS+) provides centralized security
user access validation. The system supports up to four TACACS+ servers.
TACACS+ provides a centralized user management system, while still retaining consistency with
RADIUS and other authentication processes. TACACS+ provides the following services:
Authentication
— Provides authentication during login and using user names and
user-defined passwords.
Authorization
— Performed at login. Once the authentication session is completed, an
authorization session starts using the authenticated user name.
The TACACS+ protocol ensures network integrity through encrypted protocol exchanges
between the client and TACACS+ server.