Table of Contents
Advertisement
TACACS+ Authentication
3 or 3
Primary
TACACS+
Server
The switch passes the login
requests from terminals A and B
to the TACACS+ server for
authentication. The TACACS+
server determines whether to
allow access to the switch and
what privilege level to allow for
a given access request.
Figure 5-1. Example of TACACS+ Operation
Overview
Feature
view the switch's authentication configuration
view the switch's TACACS+ server contact
configuration
configure the switch's authentication methods
configure the switch to contact TACACS+ server(s) disabled
TACACS+ authentication enables you to use a central server to allow or deny
access to the switches covered in this guide (and other TACACS-aware
devices) in your network. This means that you can use a central database to
create multiple unique username/password sets with associated privilege
levels for use by individuals who have reason to access the switch from either
the switch's console port (local access) or Telnet (remote access).
Switch Configured for
2 or 2
9
6
Access Request
TACACS Server
Response
1
TACACS+ Operation
B
Terminal "B" Remotely Accessing The Switch Via Telnet
Default
Menu
CLI
n/a
—
page 5-8
n/a
—
page 5-9
disabled
—
page
5-10
—
page
5-17
4
Terminal "A" Directly
A
Accessing the Switch
Via Switch's Console
Port
1 - 4: Path for Request from
Terminal A (Through Console Port)
6 - 9: Path for Request from
Terminal B (Through Telnet)
5
Web
—
—
—
—
5-1
Hide quick links:
Advertisement
Table of Contents
