Tripp Lite B097016 Owners Manual for B093- B097- and B098-Series Console Serve - Page 170
RADIUS Authentication
View all Tripp Lite B097016 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 170 highlights
9. Authentication • Click Apply. TACAS+ remote authentication will be used for all user access to the console server and serially or network attached devices TACACS+ The Terminal Access Controller Access Control System (TACACS+) security protocol is a recent protocol developed by Cisco. It provides detailed accounting information and flexible administrative control over authentication and authorization processes. TACACS+ allows a single access control server (the TACACS+ daemon) to provide authentication, authorization and accounting services independently. Each service can be tied into its own database to take advantage of other services available on that server or network, depending on the capabilities of the daemon. There is a draft RFC detailing this protocol. Further information on configuring remote TACACS+ servers can be found at the following websites: http://www.cisco.com/en/US/tech/tk59/technologies_tech_note09186a0080094e99.shtml http://www.cisco.com/en/US/products/sw/secursw/ps4911/products_user_guide_chapter09186a00800eb6d6.html http://cio.cisco.com/univercd/cc/td/doc/product/software/ios113ed/113ed_cr/secur_c/scprt2/sctplus.htm 9.1.3 RADIUS Authentication Perform the following procedure to configure the RADIUS authentication method used whenever the console server or any of its serial ports or hosts are accessed: • Select Serial and Network: Authentication. Check RADIUS, LocalRADIUS, RADIUSLocal or RADIUSDownLocal. • Enter the Server Address (IP or host name) of the remote authentication/authorization server. Multiple remote servers may be specified in a comma-separated list. Each server is tried in succession. • Session accounting is on by default. If session accounting information is not desired, check the Disable Accounting checkbox. One reason often cited for not wanting session accounting is, if the authentication server does not respond to accounting requests, the said request may introduce a delay when logging in. • In addition to multiple remote servers, you can also enter separate lists of authentication/authorization servers and accounting servers. If no accounting servers are specified, the authentication/authorization servers are used instead. • Enter the Server Password. • Click Apply. RADIUS remote authentication will now be used for all user access to console server and serially or network attached devices. 170