18-2
User Guide for Cisco Secure Access Control System 5.4
OL-26225-01
Chapter18 M anaging System Administration Configurations
Configuring Global System Options
Configuring EAP-TLS Settings
Use the EAP-TLS Settings page to configure EAP-TLS runtime characteristics.
Select System Administration > Configuration > Global System Options > EAP-TLS Settings.
The EAP-TLS Settings page appears as described in Table18-2:
Table18-1 TACACS+ Settings
Option Description
Port to Listen Port number on which to listen. By default, the port numbe r is displayed as 49 and you cannot
edit this field.
Connection Timeout Number of minutes before the connection times out.
Session Timeout Number of minutes before the session times out.
Maximum Packet Size Maximum packet size (in bytes).
Single Connect Support Check to enable single connect support.
Login Prompts
Username Prompt Text string to use as the username prompt.
Password Prompt Text string to use as the password pro mpt.
Password Change Control
Enable TELNET Change
Password
Choose this option if you want to provide an option to chang e password during a TELNET
session.
Prompt for Old Password: Text string to use as the old password prompt.
Prompt for New Password Text string to use as the new password prompt.
Prompt for Confirm
Password
Text string to use as the confirm password prompt.
Disable TELNET Change
Password
Choose this option if you do not want change password during a TELNET session.
Message when Disabled Message that is displayed when you choose the Disable TELNET Change Password option.
Table18-2 EAP-TLS Settings
Option Description
General
Enable EAP-TLS Session
Resume
Check this check box to support abbreviated reauthentication of a user who has passed full
EAP-TLS authentication.
This feature provides reauthentication of the user with only an SSL handshake and without the
application of certificates. EAP-TLS session resume works only within the specified EAP-TLS
session timeout value.
EAP-TLS Session
Timeout
Enter the number of seconds before the EAP-TLS session tim es out. The default value is 7200
seconds.
Stateless Session Resume