Table of Contents
Advertisement
Figure 34-79. Diagnostics > TACACS+/RADIUS page
The TACACS+/RADIUS diagnostic can be used to validate the TACACS+ and RADIUS proxy
service configuration and to perform sample authentication transactions. The Source Address is
used to find the configured proxy rule and associated server group. If the address is
, the server group for ZoneRanger access control is used.
127.0.0.1
If Use Shared Key from Server Group is selected, the shared key defined in selected server
group will be used for encryption. If not selected, an alternate Shared Key may be specified.
If Perform authorization is selected, if the protocol is TACACS+, an authorization request is
performed if the authentication request was successful. If not selected, no authorization request
is performed.
If use the ZoneRanger's configured values is selected, the values for Service, Protocol, and
Command already configured on the ZoneRanger will be used in the authorization request. If
not selected, specified values for Service, Protocol, and Command will be used for the
authorization request.
Cisco ACS servers, beginning with version 5, require a TACACS+ authorization request to
include a Command argument if the Service argument is shell. If the Command box is checked
and a Command argument value is specified, a Command argument with the specified value
will be added to the authorization request. If the Command box is checked and no Command
argument value is specified, an empty Command argument will be added to the authorization
request.
Traceroute
The Diagnostic > Traceroute performs the function of the
command, displaying
traceroute
the route between the ZoneRanger and a host.
ZoneRanger 5.5 User's Guide
191
Hide quick links:
Advertisement
Table of Contents
