HP Enterprise File Services WAN Accelerator manual Configuring a TACACS+ Server with Free TACACS+

Page 106

"monitor"

Auth-Type

:=

Local,

User-Password == "radmonitor"

 

Reply-Message = "Hello,

%u"

"raduser"

Auth-Type

:=

Local,

User-Password == "radpass"

 

Local-User =

"monitor",

Reply-Message = "Hello, %u"

7.Start the server using /usr/local/sbin/radiusd. Use the -Xoption if you want to debug the server.

NOTE: The raduser is the monitor user as specified by Local, User-Password.

Configuring a TACACS+ Server with Free TACACS+

The following section assumes you are running the TACACS+ authentication system.

The TACACS+ Local User Service is rbt-exec. The Local User Name Attribute is local-user-name. This attribute controls whether a user who is not named admin or monitor is an administrator or monitor user (instead of using the HP EFS WAN Accelerator default value). For the HP EFS WAN Accelerator, the users listed in the TACACS+ server must have Password Authentication Protocol (PAP) authentication enabled.

The following procedures install the free TACACS+ server on a Linux computer.

Cisco Secure can be used as a TACACS+ server.

To download

1.

Download TACACS+ from:

TACACS+

 

http://www.gazi.edu.tr/tacacs/get.php?src=tac_plus_v9a.tar.gz.

 

2.

At your system prompt, enter the following set of commands:

>tar xvzf tac_plus_v9a.tar.gz >cd tac_plus_v9a >./configure

3.In a text editor, open the Makefile and uncomment the OS=-DLINUXline (or other lines appropriate for the operating system of the host).

4.On Linux, in a text editor open the tac_plus.h file and uncomment the #define CONST_SYSERRLIST line.

5.At the system prompt, enter:

>make tac_plus

6.As the root user, enter the following command:

 

>make

install

 

7. Add users to the TACACS server by editing the /usr/local/etc/tac_plus.conf file.

 

For example:

 

key =

testtacacs

100

 

9 - RADIUS AND TACACS+ AUTHENTICATION

Page 105 Page 107
Image 106
Page 105 Page 107
Contents HP StorageWorks Enterprise File Services WAN Accelerator 407118-001Legal and notice information Contents Chapter Policy-Based Routing Deployments Wccp DeploymentsSerial Cluster and Cascade Deployments 107 Proxy File Service DeploymentsRadius and TACACS+ Authentication Glossary 113 Index 117Introduction About This GuideOrganization of This Guide Document Conventions BoldfaceEthernet Network Compatibility Hardware and Software DependenciesAntivirus Compatibility Additional Resources Related Reading Contacting HP HP Storage Web SiteIntroduction Designing an HP EFS WAN Accelerator Deployment Introduction to the HP EFS WAN AcceleratorTransaction Acceleration Virtual Window ExpansionDesign and Deployment Overview Transaction PredictionDesigning AN HP EFS WAN Accelerator Deployment Bypass Mode Definition of TermsFailover Mode Designing AN HP EFS WAN Accelerator Designing AN HP EFS WAN Accelerator Deployment In-Path Deployments ‹ In-Path,Server-Side, One to One Deployment onIn-Path, Failover Support Deployment Introduction to Physical In-Path DeploymentsBasic Steps Client-Side Setup Advanced Networking Failover Settings In-Path, Two Routing Points Deployment Basic Steps Server-SideIn-Path, Server-Side Deployment Basic Steps Client-Side Basic Steps Server-SideIn-Path, Server-Side, One to One Deployment In-Path, Server-Side DeploymentFollowing figure illustrates the server-side of the network Setup Advanced Networking Failover Settings Virtual In-Path Network Deployments Introduction to Virtual In-Path DeploymentsIn-Path, Load Balanced, Layer-4 Switch In-Path, Load-Balanced, Layer-4 Switch Deployment Setup Optimization Service General Settings Out-of-Path Network Deployments Introduction to Out-of-Path DeploymentsOut-of-Path, Failover Deployment Physical Out-of-Path DeploymentOut-of-Path, Server-Side, Failover Support Deployment Setup Optimization Service In-Path Rules Out-of-Path, Static Cluster Deployment Static Cluster DeploymentSetup Optimization Service In-Path Rules, Fixed Target Server-Side Hybrid In-Path and Out-of-Path DeploymentBasic Steps Client-SideSetup Optimization Service In-Path Rules Basic Steps Server-Side OUT-OF-PATH Network Deployments Configuring Connection Forwarding Introduction to Connection ForwardingNeighbors Connection Forwarding Connection Forwarding in an Asymmetric NetworkConfiguring Connection Forwarding One-to-One Failover DeploymentConfiguring Connection Forwarding Using Management Console‹ Click Update Settings Configuring Connection Forwarding Using the CLI ForwardingPolicy-Based Routing Deployments ‹ Symmetric Deployments with PBR, Autodiscovery, and CDP onIntroduction to PBR Overview of CDPHow PBR works on a Cisco 6500 Platform Version 12.217d SXB1 Wccp PBRAutodiscovery, and CDP on Configuring PBR Using Asymmetric HP EFS WAN Accelerator Deployments With PBRTo configure the client To configure the client- side HP EFS WAN AcceleratorSide router Configuring PBR Using Management Console Setup Optimization Service General Settings Setup Optimization Service In-Path Rules Basic Steps Client-Side Basic Steps Server-Side PBR Between VLANs PBR Between VLANsEFS WAN Accelerator To configure the HPTo configure the Cisco RouterSet of commands EFS WAN AcceleratorsPOLICY-BASED Routing Deployments POLICY-BASED Routing Deployments Symmetric Deployments with PBR Autodiscovery, and CDP POLICY-BASED Routing Deployments Troubleshooting ‹ Troubleshooting on Wccp DeploymentsBasic Wccp Configuration Introduction to WccpFailover Support on Wccp CLI Commands ‹ To configure a service groupService group Connecting Basic Wccp ConfigurationAccelerator To configure Configuring Client-Side HPWccp router To add the Wccp service group to Configuring Wccp Using the Management ConsoleAccelerator Enable Wccp on your router Navigate to the Setup Advanced Networking Wccp Groups Setup Service, Wccp Groups To define in-path rules to reach the server- side appliance Basic Steps Server-Side Dual Wccp Deployment Wccp 3640 routerIp cef Wccp 6209 router No ip http serverTo set the password Additional Wccp FeaturesTo configure the server-side HP EFS WAN Accelerator SecurityMulticast TCP Port RedirectionLoad Balancing To configure specific traffic redirection on the routerTo change the hashing scheme and assign a weight Failover SupportTroubleshooting Proxy File Service Deployments Introduction to PFSProxy File Service Description Term PFS TermsPFS Operating Modes How Does PFS Work? When to Use PFSWhen to use Global Mode Configuring PFS Using the Management Console To join a domain forSetup Proxy File Service PFS Configuration Required Setup Proxy File Service Shares Mode Description Initialize a share To synchronizeTo map a share To modify share InformationTo view share status DetailsRadius and TACACS+ Authentication Introduction to AuthenticationConfiguring a Radius Server with FreeRADIUS Requests on To add acceptanceRadius server Configuring a TACACS+ Server with Free TACACS+ To downloadConfiguring AuthenticationSetup Authentication General Settings TACACS+ 104 105 106 Serial Cluster and Cascade Deployments Serial Cluster DeploymentSerial Cluster To configure HP EFS WAN Accelerator1 Basic Serial Cluster DeploymentWAN Accelerator2 To configure HP EFSWAN Accelerator3 Cascade Deployment Cascade DeploymentFixed-Target Rules Glossary 114 115 116 Index PBR118
Related manuals
Manual 232 pages 61.98 Kb Manual 1 pages 12.03 Kb Manual 38 pages 24.46 Kb Manual 14 pages 52.65 Kb
Top Page Image Contents