Chapter 12
| Security Measures
AAA (Authentication, Authorization and Accounting)
Confirm Authentication Key – Re-type the string entered in the previous
■
field to ensure no errors were made. The switch will not change the
encryption key if these two fields do not match.
◆
TACACS+
Global – Provides globally applicable TACACS+ settings.
■
Server Index – Specifies the index number of the server to be configured.
■
The switch currently supports only one TACACS+ server.
Server IP Address – Address of the TACACS+ server.
■
(A Server Index entry must be selected to display this item.)
Authentication Server TCP Port – Network (TCP) port of TACACS+ server
■
used for authentication messages. (Range: 1-65535; Default: 49)
Authentication Timeout – The number of seconds the switch waits for a
■
reply from the TACACS+ server before it resends the request.
(Range: 1-65535; Default: 5)
Authentication Retries – Number of times the switch tries to authenticate
■
logon access via the authentication server. (Range: 1-30; Default: 2)
Set Key – Mark this box to set or modify the encryption key.
■
Authentication Key – Encryption key used to authenticate logon access
■
for client. Enclose any string containing blank spaces in double quotes.
(Maximum length: 48 characters)
Confirm Authentication Key – Re-type the string entered in the previous
■
field to ensure no errors were made. The switch will not change the
encryption key if these two fields do not match.
Configure Group
◆
Server Type – Select RADIUS or TACACS+ server.
◆
Group Name - Defines a name for the RADIUS or TACACS+ server group.
(Range: 1-64 characters)
◆
Sequence at Priority - Specifies the server and sequence to use for the group.
(Range: 1-5 for RADIUS; 1 for TACACS)
When specifying the priority sequence for a sever, the server index must
already be defined (see
page
225).
"Configuring Local/Remote Logon Authentication" on
– 228 –