DGS-3700-12/DGS-3700-12G Series Layer 2 Gigabit Ethernet Switch User Manual
175
Figure 5 - 38 Authentication Server Group Settings Edit window
To add an Authentication Server Host to the list, enter its IP addr ess in the IP Address field, choos e the protocol
associated with the IP address of the Authentication Server Host and click Ad d to add this Authentication Server Host
to the group.
NOTE: The user must configure Authentication Server Hosts using the A uthentication
Server Hosts window before adding hosts to the list. Authentication Server H osts m ust be
configured for their specific protocol on a remote centralized server before this function
can work properly.
NOTE: The four built in server groups can only have server hosts running the sam e
TACACS daemon. TACACS/XTACACS/TACACS+ protocols are separ ate entities and
are not compatible with each other.
Authentication Server
This window will set user-defined Authentication Server Hosts for the TACACS/XTACACS/ TACACS+/RADIUS
security protocols on the Switch. When a user attempts to access the Switch with Authenticat ion Policy enabled, the
Switch will send authentication packets to a remote TACACS/XTACACS/TACACS+/ RADIUS ser ver host on a rem ote
host. The TACACS/XTACACS/TACACS+/RADIUS server host will then verif y or deny the request and return the
appropriate message to the Switch. More than one authentication pro tocol can be run on the sam e physical server
host but, remember that TACACS/XTACACS/TACACS+/RADIUS are separ ate entities and are not compatible wit h
each other. The maximum supported number of server hosts is 16.
To view this window, click Security > Access Authentication Control > Authentication Server as shown below:
Figure 5 - 39 Authentication Server Settings window
Configure the following parameters to add an Authentication Server Host:
Parameter Description