Tacacs+ Authentication For Central Control Of Switch Access Security - HP 4108GL Management And Configuration Manual
Procurve switch
Hide thumbs
Also See for 4108GL:
- Management and configuration manual (547 pages) ,
- Function manual (306 pages) ,
- Installation and getting started manual (94 pages)
Table of Contents
Advertisement
Using Passwords and TACACS+ To Protect Against Unauthorized Access
TACACS+ Authentication for Central Control of Switch Access Security
TACACS+ Authentication for Central
Control of Switch Access Security
TACACS+ Features
TACACS+ authentication enables you to use a central server to allow or deny
access to the Switch 4108GL (and other TACACS-aware devices) in your
network. This means that you can use a central database to create multiple
unique username/password sets with associated privilege levels for use by
individuals who have reason to access the switch from either the switch's
console port (local access) or Telnet (remote access).
A3 or
B3
A2 or
B2
Primary
TACACS+
Server
The switch passes the login
requests from terminals A and B
to the TACACS+ server for
authentication. The TACACS+
server determines whether to
allow access to the switch and
what privilege level to allow for
a given access request.
Figure 9-4. Example of TACACS+ Operation
9-8
Feature
view the switch's authentication configuration
view the switch's TACACS+ server contact
configuration
configure the switch's authentication methods
configure the switch to contact TACACS+ server(s) disabled
Switch 4108GL
Configured for
TACACS+ Operation
B4
B
B1
Access Request
TACACS Server
Response
Default
Menu
n/a
—
n/a
—
disabled
—
—
A4
A1
A
Terminal "B" Remotely Accessing The Switch Via Telnet
A1 - A4 : Path for Request from
Terminal A (Through Console Port)
B1 - B4: Path for Request from
Terminal B (Through Telnet)
CLI
Web
page 14
—
page 15
—
page 16
—
page 19
—
Terminal "A" Directly
Accessing the Switch
Via Switch's Console
Port
Hide quick links:
Advertisement
Chapters
Table of Contents
Troubleshooting
