Configuring Device Security
Defining Authentication
Cisco Small Business SFE/SGE Managed Switches Administration Guide
Defining TACACS+
The devices provide Terminal Access Controller Access Control System
(TACACS+) client support. TACACS+ provides centralized security for validation
of users accessing the device. TACACS+ provides a centralized user
management system, while still retaining consistency with RADIUS and other
authentication processes. TACACS+ provides the following services:
•
Authentication — Provides authentication during login and via user names and
user-defined passwords.
•
Authorization — Performed at login. Once the authentication session is
completed, an authorization session starts using the authenticated user name.
The TACACS server checks the user privileges.
The TACACS+ protocol ensures network integrity through encrypted protocol
exchanges between the device and TACACS+ server.
The TACACS+ default parameters are user-assigned defaults. The default settings
are applied to newly defined TACACS+ servers. If default values are not defined,
the system defaults are applied to the new TACACS+ new servers. The
Page
contains fields for assigning the Default Parameters for the TACACS+
servers. TACACS+ is supported on IPv4 and not on IPv6.
To define TACACS+:
4
TACACS+
50