Black Box LES110BA, LES1116A, LES1132A, LES114BA, LES1208A-R2, LES1216A-R2, LES1232A, LES1248A-R2, LES1308A, LES1316A, LES1332A, LES1348A, LES1408A, LES1416A, LES1432A, LES144BA, Value-Line and Advanced Console Servers , ____________________________________________________________________

 In addition to multiple remote servers, you can also enter separate lists of Authentication/

Authorization servers and Accounting servers. If no Accounting servers are specified, the

Authentication/Authorization servers are used instead.

 Enter and confirm the Server Password. Then select the method to be used t o aut henticate to

the server (d ef aul ts to PAP). To use DES encrypted passwords, select Login

 If required ent er the TACACS Group Membership Attribute that is to be used to indicate gro up

memberships (defaults to groupname#n)

 If required, specify TACACS Service to authenticate with. This determines which set of attributes

are returned by t he server (defaults to raccess )

 If required, check Default Admin Privileges t o gi ve all TACAS+ authenticated users admin

privileges. Use Remote Groups must also be ticked for these privileges to be granted

 Click Apply. TACAS+ remote authentication will now be used for all user access to console server

and serially or network attached devices.

TACACS+ The Terminal Access Controller Access Control Syste m (TA CACS+) security protocol is a

recent protocol dev eloped by Cisco. It provides detailed accounting information and fl exible

administrativ e cont rol over the authent i cation and authorizati on processes. TAC A CS + all ows for a

single access cont rol server (the TACACS+ daemon) to provide authentication, authori zat i on, and

accounting service s independently . Each service can be t ied into its own database to take

advantage of other s erv ices available on that server or on the net work, depending on the

capabilities of t he daem on. There is a draft RFC detailing this prot ocol. You can fi nd further

information on conf iguring remote TACACS+ servers at the following sites:

http://www.cisco.com/en/US/tech/tk59/technologies_tech_note09186a0080094e99.shtml

http://www.cisco.com/en/US/products/sw/secursw/ps4911/products_user_guide_chapter09186a0

0800eb6d6.html

http://cio.cisco.com/univercd/cc/td/doc/product/software/ios113ed/113ed_cr/secur_c/scprt2/sctplu

s.htm

9.1.3 RADIUS authentication

Perform the following procedure to configure the RADIUS authentication method to use whenever the

console server or any of its serial ports or hosts is accessed:

 Select Serial and Network: Authentication and check RADIUS or LocalRADIUS or RADIUSLocal

or RADIUSDownLocal.

_____________________________________________________________________

724-746-5500 | blackbox.com Page 168