Chapter 18 Managing System Administration Configurations

Configuring Global System Options

Table 18-1

TACACS+ Settings

 

 

 

Option

 

Description

 

 

 

Port to Listen

 

Port number on which to listen. By default, the port number is displayed as 49 and you cannot

 

 

edit this field.

 

 

Connection Timeout

Number of minutes before the connection times out.

 

 

 

Session Timeout

 

Number of minutes before the session times out.

 

 

Maximum Packet Size

Maximum packet size (in bytes).

 

 

Single Connect Support

Check to enable single connect support.

 

 

 

Login Prompts

 

 

 

 

Username Prompt

Text string to use as the username prompt.

 

 

Password Prompt

Text string to use as the password prompt.

 

 

Password Change Control

 

 

 

Enable TELNET Change

Choose this option if you want to provide an option to change password during a TELNET

Password

 

session.

 

 

Prompt for Old Password:

Text string to use as the old password prompt.

 

 

Prompt for New Password

Text string to use as the new password prompt.

 

 

Prompt for Confirm

Text string to use as the confirm password prompt.

Password

 

 

 

 

Disable TELNET Change

Choose this option if you do not want change password during a TELNET session.

Password

 

 

 

 

Message when Disabled

Message that is displayed when you choose the Disable TELNET Change Password option.

 

 

 

Configuring EAP-TLS Settings

Use the EAP-TLS Settings page to configure EAP-TLS runtime characteristics.

Select System Administration > Configuration > Global System Options > EAP-TLS Settings.

The EAP-TLS Settings page appears as described in Table 18-2:

Table 18-2 EAP-TLS Settings

Option

Description

 

 

Enable EAP-TLS Session

Check this box to support abbreviated reauthentication of a user who has passed full EAP-TLS

Resume

authentication.

 

This feature provides reauthentication of the user with only an SSL handshake and without the

 

application of certificates. EAP-TLS session resume works only within the EAP-TLS session

 

timeout value.

 

 

EAP-TLS session timeout

Enter the number of seconds before the EAP-TLS session times out.

 

 

 

User Guide for Cisco Secure Access Control System 5.3

18-2

OL-24201-01

Page 516
Image 516
Cisco Systems OL-24201-01 manual Configuring EAP-TLS Settings, 18-2