Netgear GS516TP Software Administration Manual - Page 120
Con TACACS+, TACACS+ Configuration
View all Netgear GS516TP manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 120 highlights
GS516TP Gigabit Smart Switches Configure TACACS+ TACACS+ provides a centralized user management system while still retaining consistency with RADIUS and other authentication processes. TACACS+ provides the following services: • Authentication. Provides authentication during login using user names and user-defined passwords. • Authorization. Performed at login. When the authentication session is completed, an authorization session starts using the authenticated user name. The TACACS+ server checks the user privileges. The TACACS+ protocol ensures network security through encrypted protocol exchanges between the device and TACACS+ server. The TACACS+ menu contains links to screens described to the following sections: • TACACS+ Configuration • TACACS+ Server Configuration TACACS+ Configuration The TACACS+ Configuration screen contains the TACACS+ settings for communication between the switch and the TACACS+ server you configure through the inband management port. To configure global TACACS+ settings: 1. Select Security > Management Security > TACACS+ > TACACS+ Configuration. 2. In the Key String field, specify the authentication and encryption key for TACACS+ communications between the switch and the TACACS+ server. The valid range is 0-128 characters. The key must match the key configured on the TACACS+ server. 3. In the Connection Timeout field, specify the maximum number of seconds allowed to establish a TCP connection between the switch and the TACACS+ server. The valid range is 1-30 seconds. The default is 5 seconds. 4. Click APPLY to update the switch with the TACACS+ server settings. TACACS+ Server Configuration Use the TACACS+ Server Configuration screen to configure up to five TACACS+ servers with which the switch can communicate. To configure TACACS+ server settings: 1. Select Security > Management Security > TACACS+ > TACACS+ Server Configuration link. 2. In the TACACS+ Server field, enter the IP address of the server to add 3. In the Priority field, specify the order in which the TACACS+ servers are used. A value of 0 is the highest priority. 4. In the Port field, specify the authentication port number through which the TACACS+ session occurs. The default is port 49, and the range is 0-65535. 120