Tripp Lite B097016INT Owners Manual for B093- B097- and B098-Series Console Se - Page 170

RADIUS Authentication

Get Tripp Lite B097016INT PDF manuals and user guides View all Tripp Lite B097016INT manuals
Add to My Manuals
Save this manual to your list of manuals

Page 170 highlights

9. Authentication • Click Apply. TACAS+ remote authentication will be used for all user access to the console server and serially or network attached devices TACACS+ The Terminal Access Controller Access Control System (TACACS+) security protocol is a recent protocol developed by Cisco. It provides detailed accounting information and flexible administrative control over authentication and authorization processes. TACACS+ allows a single access control server (the TACACS+ daemon) to provide authentication, authorization and accounting services independently. Each service can be tied into its own database to take advantage of other services available on that server or network, depending on the capabilities of the daemon. There is a draft RFC detailing this protocol. Further information on configuring remote TACACS+ servers can be found at the following websites: http://www.cisco.com/en/US/tech/tk59/technologies_tech_note09186a0080094e99.shtml http://www.cisco.com/en/US/products/sw/secursw/ps4911/products_user_guide_chapter09186a00800eb6d6.html http://cio.cisco.com/univercd/cc/td/doc/product/software/ios113ed/113ed_cr/secur_c/scprt2/sctplus.htm 9.1.3 RADIUS Authentication Perform the following procedure to configure the RADIUS authentication method used whenever the console server or any of its serial ports or hosts are accessed: • Select Serial and Network: Authentication. Check RADIUS, LocalRADIUS, RADIUSLocal or RADIUSDownLocal. • Enter the Server Address (IP or host name) of the remote authentication/authorization server. Multiple remote servers may be specified in a comma-separated list. Each server is tried in succession. • Session accounting is on by default. If session accounting information is not desired, check the Disable Accounting checkbox. One reason often cited for not wanting session accounting is, if the authentication server does not respond to accounting requests, the said request may introduce a delay when logging in. • In addition to multiple remote servers, you can also enter separate lists of authentication/authorization servers and accounting servers. If no accounting servers are specified, the authentication/authorization servers are used instead. • Enter the Server Password. • Click Apply. RADIUS remote authentication will now be used for all user access to console server and serially or network attached devices. 170

  • 1
  • 2
  • 3
  • 4
  • 5
  • 6
  • 7
  • 8
  • 9
  • 10
  • 11
  • 12
  • 13
  • 14
  • 15
  • 16
  • 17
  • 18
  • 19
  • 20
  • 21
  • 22
  • 23
  • 24
  • 25
  • 26
  • 27
  • 28
  • 29
  • 30
  • 31
  • 32
  • 33
  • 34
  • 35
  • 36
  • 37
  • 38
  • 39
  • 40
  • 41
  • 42
  • 43
  • 44
  • 45
  • 46
  • 47
  • 48
  • 49
  • 50
  • 51
  • 52
  • 53
  • 54
  • 55
  • 56
  • 57
  • 58
  • 59
  • 60
  • 61
  • 62
  • 63
  • 64
  • 65
  • 66
  • 67
  • 68
  • 69
  • 70
  • 71
  • 72
  • 73
  • 74
  • 75
  • 76
  • 77
  • 78
  • 79
  • 80
  • 81
  • 82
  • 83
  • 84
  • 85
  • 86
  • 87
  • 88
  • 89
  • 90
  • 91
  • 92
  • 93
  • 94
  • 95
  • 96
  • 97
  • 98
  • 99
  • 100
  • 101
  • 102
  • 103
  • 104
  • 105
  • 106
  • 107
  • 108
  • 109
  • 110
  • 111
  • 112
  • 113
  • 114
  • 115
  • 116
  • 117
  • 118
  • 119
  • 120
  • 121
  • 122
  • 123
  • 124
  • 125
  • 126
  • 127
  • 128
  • 129
  • 130
  • 131
  • 132
  • 133
  • 134
  • 135
  • 136
  • 137
  • 138
  • 139
  • 140
  • 141
  • 142
  • 143
  • 144
  • 145
  • 146
  • 147
  • 148
  • 149
  • 150
  • 151
  • 152
  • 153
  • 154
  • 155
  • 156
  • 157
  • 158
  • 159
  • 160
  • 161
  • 162
  • 163
  • 164
  • 165
  • 166
  • 167
  • 168
  • 169
  • 170
  • 171
  • 172
  • 173
  • 174
  • 175
  • 176
  • 177
  • 178
  • 179
  • 180
  • 181
  • 182
  • 183
  • 184
  • 185
  • 186
  • 187
  • 188
  • 189
  • 190
  • 191
  • 192
  • 193
  • 194
  • 195
  • 196
  • 197
  • 198
  • 199
  • 200
  • 201
  • 202
  • 203
  • 204
  • 205
  • 206
  • 207
  • 208
  • 209
  • 210
  • 211
  • 212
  • 213
  • 214
  • 215
  • 216
  • 217
  • 218
  • 219
  • 220
  • 221
  • 222
  • 223
  • 224
  • 225
  • 226
  • 227
  • 228
  • 229
  • 230
  • 231
  • 232
  • 233
  • 234
  • 235
  • 236
  • 237
  • 238
  • 239
  • 240
  • 241
  • 242
  • 243
  • 244
  • 245
  • 246
  • 247
  • 248
  • 249
  • 250
  • 251
  • 252
  • 253
  • 254
  • 255
  • 256
  • 257
  • 258
  • 259
  • 260
  • 261
  • 262
  • 263
  • 264
  • 265
  • 266
  • 267
  • 268
  • 269
  • 270
  • 271
  • 272
  • 273
  • 274
  • 275
  • 276
  • 277
  • 278
  • 279
  • 280
  • 281
  • 282
  • 283
  • 284
  • 285
  • 286
  • 287
  • 288
170
• Click
Apply
. TACAS+ remote authentication will be used for all user access to the console server and serially or network
attached devices
TACACS+
The Terminal Access Controller Access Control System (TACACS+) security protocol is a recent protocol
developed by Cisco. It provides detailed accounting information and flexible administrative control over
authentication and authorization processes. TACACS+ allows a single access control server (the TACACS+
daemon) to provide authentication, authorization and accounting services independently. Each service can be
tied into its own database to take advantage of other services available on that server or network, depending on
the capabilities of the daemon. There is a draft RFC detailing this protocol. Further information on configuring
remote TACACS+ servers can be found at the following websites:
9.1.3 RADIUS Authentication
Perform the following procedure to configure the RADIUS authentication method used whenever the console server or any of
its serial ports or hosts are accessed:
• Select
Serial and Network: Authentication
. Check
RADIUS, LocalRADIUS, RADIUSLocal
or
RADIUSDownLocal
.
• Enter the
Server Address
(IP or host name) of the remote authentication/authorization server. Multiple remote servers may
be specified in a comma-separated list. Each server is tried in succession.
• Session accounting is on by default. If session accounting information is not desired, check the
Disable Accounting
checkbox. One reason often cited for not wanting session accounting is, if the authentication server does not respond to
accounting requests, the said request may introduce a delay when logging in.
• In addition to multiple remote servers, you can also enter separate lists of authentication/authorization servers and
accounting servers. If no accounting servers are specified, the authentication/authorization servers are used instead.
• Enter the
Server Password
.
• Click
Apply
. RADIUS remote authentication will now be used for all user access to console server and serially or network
attached devices.
9. Authentication