Table of Contents
Advertisement
Chapter 7
Setting Up and Managing User Accounts
Step 2
Step 3
Setting TACACS+ Outbound Password for a User
78-13751-01, Version 3.0
Do one of the following:
To use the information configured in the Password Authentication section,
a.
select Use CiscoSecure PAP password.
Note
For information about basic password setup, see the
Basic User Account" section on page
To employ an external database password, select Use external database
b.
password, and then choose from the list the database that authenticates this
user's enable password.
The list of databases displays only the databases that you have
Note
configured. For more information, see the
Databases" section on page
c.
To employ a separate password, click Use separate password, and then type
and retype to confirm a control password for this user. This password is used
in addition to the regular authentication.
Do one of the following:
If you are finished configuring the user account options, click Submit to
a.
record the options.
To continue to specify the user account options, perform other procedures in
b.
this chapter, as applicable.
The TACACS+ outbound password enables a AAA client to authenticate itself to
another AAA client via outbound authentication. The outbound authentication
can be PAP, CHAP, MS-CHAP, or ARAP, and results in the Cisco Secure ACS
password being given out. By default, the user's ASCII/PAP or
CHAP/MS-CHAP/ARAP password is used. To prevent compromising inbound
passwords, you can configure a separate SENDAUTH password.
Cisco Secure ACS 3.0 for Windows 2000/NT Servers User Guide
Advanced User Authentication Settings
7-5.
"About External User
11-4.
"Adding a
7-35
Advertisement
Table of Contents
Troubleshooting
