1. Manuals
  2. Brands
  3. HP Manuals
  4. Switch
  5. 10GB ETHERNET BL-C SWITCH BMD00022
  6. Command reference manual

Tacacs+ Server Configuration - HP 10GB ETHERNET BL-C SWITCH BMD00022 Command Reference Manual

Hewlett-packard switch user manual
Hide thumbs
Table of Contents

Advertisement

Table 82
RADIUS Server Configuration Menu options
Command
on
off
cur
IMPORTANT:
via the console or Telnet/SSH/HTTP/HTTPS. Backdoor for console is always enabled, so you can
connect using noradius and the administrator password even if the backdoor (telnet) or secure
backdoor (secbd) are disabled.
If Telnet backdoor is enabled (telnet ena), type in noradius as a backdoor to bypass RADIUS
checking, and use the administrator password to log into the switch. The switch allows this even if
RADIUS servers are available.
If secure backdoor is enabled (secbd ena), type in noradius as a backdoor to bypass RADIUS
checking, and use the administrator password to log into the switch. The switch allows this only if
RADIUS servers are not available.

TACACS+ server configuration

Command: /cfg/sys/tacacs+
[TACACS+ Server Menu]
prisrv
secsrv
secret
secret2 - Set secret for secondary TACACS+ server
port
retries - Set number of TACACS+ server retries
timeout - Set timeout value of TACACS+ server retries
bckdoor - Enable/disable TACACS+ back door for telnet/ssh/http/https
secbd
cmap
usermap - Set user privilege mappings
on
off
cur
TACACS+ (Terminal Access Controller Access Control System) is an authentication protocol that
allows a remote access server to forward a user's logon password to an authentication server to
determine whether access can be allowed to a given system. TACACS+ and Remote Authentication
Dial-In User Service (RADIUS) protocols are more secure than the TACACS encryption protocol.
TACACS+ is described in RFC 1492.
TACACS+ protocol is more reliable than RADIUS, as TACACS+ uses the Transmission Control
Protocol (TCP) whereas RADIUS uses the User Datagram Protocol (UDP). Also, RADIUS combines
authentication and authorization in a user profile, whereas TACACS+ separates the two operations.
If RADIUS is enabled, you must login using RADIUS authentication when connecting
- Set IP address of primary TACACS+ server
- Set IP address of secondary TACACS+ server
- Set secret for primary TACACS+ server
- Set TACACS+ port number
- Enable/disable TACACS+ secure backdoor for telnet/ssh/http/https
- Enable/disable TACACS+ new privilege level mapping
- Enable TACACS+ authentication
- Disable TACACS+ authentication
- Display current TACACS+ settings
Description
Enables the RADIUS server.
Disables the RADIUS server. This is the default.
Displays the current RADIUS server parameters.
Configuration Menu 116

Advertisement

Table of Contents
loading

Related Manuals for HP HP 10GB ETHERNET BL-C SWITCH BMD00022

Related Content for HP HP 10GB ETHERNET BL-C SWITCH BMD00022

This manual is also suitable for:

10gb ethernet bl-c

Table of Contents