Manualshelf

User`s manual

ManualsBrandsBlack Box ManualsComputer equipmentAdvanced Console Server
121122123124125126127128129130
_____________________________________________________________________
724-746-5500 | blackbox.com Page 126
TACACS /RADIUS/LDAP Down Local: Tries remote authentication first, falling back to local if the
remote authentication returns an error condition (for example, if the remote authentication
server is down or inaccessible).
9.1.1 Local authentication
Select Serial and Network: Authentication and check Local.
Click Apply.
9.1.2 TACACS authentication
Perform the following procedure to configure the TACACS+ authentication method to use whenever the
console server or any of its serial ports or hosts is accessed:
Select Serial and Network: Authentication and check TACAS or LocalTACACS or TACACSLocal
or TACACSDownLocal
Enter the Server Address (IP or host name) of the remote Authentication/Authorization server.
Multiple remote servers may be specified in a comma-separated list. Each server is tried in
succession.
In addition to multiple remote servers, you can also enter separate lists of Authentication/
Authorization servers and Accounting servers. If no Accounting servers are specified, the
Authentication/Authorization servers are used instead.
Enter the Server Password.
Click Apply. TACAS+ remote authentication will now be used for all user access to console server
and serially or network attached devices.
TACACS+ The Terminal Access Controller Access Control System (TACACS+) security protocol is a
recent protocol developed by Cisco. It provides detailed accounting information and flexible
administrative control over the authentication and authorization processes. TACACS+ allows for a
single access control server (the TACACS+ daemon) to provide authentication, authorization, and
accounting services independently. Each service can be tied into its own database to take
advantage of other services available on that server or on the network, depending on the
capabilities of the daemon. There is a draft RFC detailing this protocol. You can find further
information on configuring remote TACACS+ servers at the following sites:
http://www.cisco.com/en/US/tech/tk59/technologies_tech_note09186a0080094e99.shtml