| Security Measures
C
13
HAPTER
AAA Authorization and Accounting
Authentication Retries – Number of times the switch tries to
■
authenticate logon access via the authentication server.
(Range: 1-30; Default: 2)
Set Key – Mark this box to set or modify the encryption key.
■
Authentication Key – Encryption key used to authenticate logon
■
access for client. Do not use blank spaces in the string. (Maximum
length: 48 characters)
Confirm Authentication Key – Re-type the string entered in the
■
previous field to ensure no errors were made. The switch will not
change the encryption key if these two fields do not match.
TACACS+
◆
Global – Provides globally applicable TACACS+ settings.
■
Server Index – Specifies the index number of the server to be
■
configured. The switch currently supports only one TACACS+ server.
Server IP Address – Address of the TACACS+ server.
■
(A Server Index entry must be selected to display this item.)
Authentication Timeout – The number of seconds the switch
■
waits for a reply from the TACACS+ server before it resends the
request. (Range: 1-65535; Default: 5)
Authentication Server TCP Port – Network (TCP) port of
■
TACACS+ server used for authentication messages.
(Range: 1-65535; Default: 49)
Set Key – Mark this box to set or modify the encryption key.
■
Authentication Key – Encryption key used to authenticate logon
■
access for client. Do not use blank spaces in the string. (Maximum
length: 48 characters)
Confirm Authentication Key – Re-type the string entered in the
■
previous field to ensure no errors were made. The switch will not
change the encryption key if these two fields do not match.
Configure Group
Server Type – Select RADIUS or TACACS+ server.
◆
Group Name - Defines a name for the RADIUS or TACACS+ server
◆
group. (Range: 1-255 characters)
Sequence at Priority - Specifies the server and sequence to use for
◆
the group. (Range: 1-5 for RADIUS; 1 for TACACS)
– 280 –