TACACS+ Authentication
Controlling Web Browser Interface Access When Using TACACS+ Authentication
CLI Message
Connecting to Tacacs server The switch is attempting to contact the TACACS+ server identified in the switch's tacacs
Connecting to secondary
Tacacs server
4-28
Controlling Web Browser Interface
Access When Using TACACS+
Authentication
Configuring the switch for TACACS+ authentication does not affect web
browser interface access. To prevent unauthorized access through the web
browser interface, do one or more of the following:
■
Configure local authentication (a Manager user name and password
and, optionally, an Operator user name and password) on the switch.
Configure the switch's Authorized IP Manager feature to allow web
■
browser access only from authorized management stations. (The
Authorized IP Manager feature does not interfere with TACACS+
operation.)
Disable web browser access to the switch by going to the System
■
Information screen in the Menu interface and configuring the Web
Agent Enabled parameter to No.
Messages Related to TACACS+
Operation
The switch generates the CLI messages listed below. However, you may see
other messages generated in your TACACS+ server application. For informa
tion on such messages, refer to the documentation you received with the
application.
Meaning
server configuration as the first-choice (or only) TACACS+ server.
The switch was not able to contact the first-choice TACACS+ server, and is now
attempting to contact the next (secondary) TACACS+ server identified in the switch's
tacacs-server configuration.