DXS/DWS 3200 Series User Guide

Defining TACACS+ Authentication

Terminal Access Controller Access Control System (TACACS+) provides centralized security user access valida- tion. The sytem supports up-to 4 TACACS+ servers.

TACACS+ provides a centralized user management system, while still retaining consistency with RADIUS and other authentication processes. TACACS+ provides the following services:

Authentication — Provides authentication during login and via user names and user-defined passwords.

Authorization — Performed at login. Once the authentication session is completed, an authorization session starts using the authenticated user name.

The TACACS+ protocol ensures network integrity through encrypted protocol exchanges between the client and TACACS+ server.

The TACACS+ default parameters are user-assigned defaults. The default settings are applied to newly defined TACACS+ servers. If default values are not defined, the system defaults are applied to the new TACACS+ new servers.

To define TACACS+ authentication settings:

1.Click System > Management Security > Authentication > TACACS+. The TACACS+ Page opens.

Figure 45: TACACS+ Page

The Default Parameters section contains the following fields:

Source IP Address — Defines the default device source IP address used for the TACACS+ session between the device and the TACACS+ server.

Key String — Defines the default authentication and encryption key for TACACS+ communication between the device and the TACACS+ server.

Timeout for Reply — Defines the default time that passes before the connection between the device and the TACACS+ times out. The default is 5.

Page 92

Page 93
Image 93
D-Link DWS/DXS-3200 manual Defining TACACS+ Authentication, Tacacs+