Table of Contents
Advertisement
6.3 TACACS+
6.3
TACACS+
TACACS+ (Terminal Access Controller Access Control Server) is a security pro-
tocol for AAA (Authorization, authentication and accounting), which is used to
provide centralised authentication for users who want to gain access to the net-
work.
This section explains how to install and configure a TACACS+ on up to two serv-
ers on a Linux environment where the client is a WR-Z16 device.
The instructions to install and configure a TACACS+ server on an Ubuntu
machine are explained in the Appendix
figuration" on
In order to configure the TACACS+ protocol, it is necessary to modify the con-
figuration file usually located at:
/etc/tacacs+/tac_plus.conf
Alternatively, the TACACS+ settings are located in the Web GUI under Admin-
istration > Security > Authentication.
6.3.1
Verification of TACACS+ installation
In order to verify the installation, it is possible to use the following set-up (see fig-
ure below). The TACACS+ client will ask for authentication to the server, which
will answer if the user passed. Then the device will ask for credentials, which will
be validated by the TACACS+ server and grant access to the user if the authen-
tication was successful.
100
Caution:
Diffie-Hellman generation time: To generate the Diffie-Hell-
man parameters file, it is required to reboot the device and wait up to
20 minutes, or even more in some particular cases. In this period, the
device MUST NOT be powered off, rebooted or any similar action.
The device will not be accessible until this process finishes.
page 172.
" TACACS+ and RADIUS server con-
CHAPTER
•
6
WR-Z16 User Manual Rev. v5.0
Advertisement
Table of Contents
