Table of Contents
Advertisement
10
Configuring Security and Access
Note
The maximum tries value includes the first attempt. For example, a value
of 3 means the client will make 2 additional attempts to contact the
RADIUS server after the first attempt.
14. Click A
Note
Repeat steps 1 to 14 to configure additional RADIUS authentication
profiles. You must configure a RADIUS Authentication server for each
profile even if you associate the new profile with a server that you
previously configured for an existing RADIUS authentication profile.
Note
Repeat steps 8 to 14 of this procedure to configure additional AAA
RADIUS Authentication Servers only.
Configuring TACACS+
TACACS+ is an authentication mechanism by which a remote server that is
not part of IPSO authenticates users (checks passwords) on behalf of the IPSO
system. TACACS+ encrypts transmitted passwords and other data for
security.
In the IPSO 3.6 release, TACACS+ is supported for authentication only, and
not for accounting. Challenge/response authentication, such as S/Key, over
TACACS+ is not supported by IPSO at this time.
TACACS+ support may be configured separately for various services. The
Voyager service is one of those for which TACACS+ is supported and is
configured as the "httpd" service. When TACACS+ is configured for use with
a service, IPSO contacts the TACACS+ server each time it needs to check a
user password. For the Voyager service this occurs for each HTTP request
572
, and then click S
PPLY
to make your changes permanent.
AVE
Voyager Reference Guide
Advertisement
Table of Contents
