Manualshelf

Specifications

ManualsBrandsBlack Box ManualsComputer equipmentDTX5000
61626364656667686970
Chapter 8 Authentication Services
PAP - Password Authentication Protocol
CHAP - Challenge Handshake Authentication Protocol (default)
MS-CHAP - Microsoft Challenge Handshake Authentication Protocol
MS-CHAP v2 - Microsoft Challenge Handshake Authentication Protocol Version 2
b. In the Shared Secret field, type the shared secret, which is a password protected field. Microsoft’s
implementation allows up to 128 ASCII characters for the shared secret; other servers may have a different limit.
c. Re-enter the shared secret in the Confirm Shared Secret field.
d. Click Save.
6. Click Close. The User Authentication Services dialog box will appear.
8.1.6 TACACS+ external authentication service
The DTX 5000-CTL Management Appliance supports TACACS+ external authentication. Once the TACACS+
authentication service is added, you may map TACACS+ users to the DTX Control database by using the Add User
Account wizard. The username added in the DTX Control database should match the username configured in the
TACACS+ server. For more information about adding users, see Adding User Accounts on page 76.
You may choose to associate users with internal DTX Control groups to control group level access rights. Or, you may
choose to map users to external TACACS+ groups and control group level access rights using the TACACS+ service.
There are two types of external TACACS+ groups that can be used: the TACACS+ standard privilege level attribute, or a
custom group name attribute. To map users to external TACACS+ groups, use the DTX Control Add User Group wizard
and specify the group type. For more information, see Adding User-defined User Groups on page 86.
To add a TACACS+ external authentication service:
1. On the TACACS+ server that will be used as an external authentication service, add the DTX Control server as a
TACACS+ client. Make a note of the configured shared secret and the available authentication type(s) on the
TACACS+ server.
2. From the DTX Control Explorer, Click the Users tab.
3. Click Authentication Services in the top navigation bar. The User Authentication Services window will open.
4. Click Add. The Add Authentication Service Wizard will appear.
5. The Provide Authentication Service Name and Type window will open.
a. Type a 1-64 character name for the TACACS+ authentication service.
b. Select TACACS+ from the Type menu.
c. Click Next.
6. The Specify TACACS+ Connection Settings window will open.
a. Type the address of the TACACS+ host or type the DNS host name in the Server Address field.
b. Type the number of the port (from 1-65535) connecting to the TACACS+ host in the Port Number field. The
default port is 49.
c. Click Next.
7. The Establish Connection with Authentication Service window will open briefly. If the external authentication service
is contacted successfully, the Specify TACACS+ Authentication Settings window will open.
a. Select the authentication type from the Authentication Type menu. Make sure it is one of the available
authentication types noted in step 1.
Page 69 724-746-5500 | blackbox.com