GS700TP Smart Switch Software Administration Manual

2.Select the TACACS+ server entry.

3.Enter the Host IP Address, Key String, Authentication Port and Timeout for Reply in the provided fields in the first row.

4.Select the Single Connection status and Active server from the lists in the provided fields in the first row.

5.Click Apply to update the device.

To add a new TACACS+ server entry:

1.Click Security > Management Security > TACACS+. The TACACS+ screen displays.

2.Enter the Host IP Address, Key String, Authentication Port and Timeout for Reply in the provided fields in the first row.

3.Select the Single Connection status and Active server from the lists in the provided fields in the first row.

4.Click Add to update the device.

To remove a TACACS+ server entry:

1.Click Security > Management Security > TACACS+. The TACACS+ screen displays.

2.Select the TACACS+ server entry.

3.Click Delete to remove the entry.

Authentication List

The Authentication List screen contains information for defining an authentication method for the selected Authentication List. For example, if the user selects TACACS+ as the first entry, None as the second, this causes authentication to first occur at the TACACS+ server. If the TACACS+ server is inaccessible or not defined, the session is permitted.

Once the Authentication List is defined as Local, it is not possible to define an alternative authentication method as it is a built-in system authentication method.

In order to configure RADIUS/TACACS+ authentication, the user name should be configured as $enab15$ on the RADIUS/TACACS+ server.

6-6

Managing Security

v1.0, December 2007

Page 130
Image 130
NETGEAR GS700TP manual Authentication List