Section 21. Defining TACACS+ Authentication
Terminal Access Controller Access Control System (TACACS+) provides centralized security user access valida-
tion. The system supports up-to 4 TACACS+ servers.
TACACS+ provides a centralized user management system, while still retaining consistency with RADIUS and
other authentication processes. TACACS+ provides the following services:
•
Authentication — Provides authentication during login and via user names and user-defined passwords.
•
Authorization — Performed at login. Once the authentication session is completed, an authorization session
starts using the authenticated user name.
The TACACS+ protocol ensures network integrity through encrypted protocol exchanges between the client and
TACACS+ server.
The TACACS+ default parameters are user-assigned defaults. The default settings are applied to newly defined
TACACS+ servers. If default values are not defined, the system defaults are applied to the new TACACS+ new
servers.
To define TACACS+ authentication settings:
1.
Click System > Management Security > Authentication > TACACS+. The TACACS+ Page opens.
Figure 148: TACACS+ Page
The Default Parameters section contains the following fields:
•
Source IP Address — Defines the default device source IP address used for the TACACS+ session between
the device and the TACACS+ server.
Defining TACACS+ Authentication
Page 231