Concept Guide

ManualsBrandsDell ManualsAccess PlatformsW-Series 207 Access Points

161

162

163

164

165

166

167

168

169

170

167 | Authentication and User Management Dell Networking W-Series Instant 6.4.3.1-4.2.0.0 | User Guide

Parameter Description

Filter Specify the filter to apply when searching for a user in the LDAP database. The default filter string is

(objectclass=*).

Key

Attribute

Specify the attribute to use as a key while searching for the LDAP server. For Active Directory, the

value is sAMAccountName

Timeout Enter a value between 1 and 30 seconds. The default value is 5.

Retry count Enter a value between 1 and 5. The default value is 3.

Dead Time Specify a dead time for authentication server in minutes within the range of 1-1440 minutes. The

default dead time interval is 5 minutes.

When two or more authentication servers are configured on the W-IAP and a server is unavailable,

the dead time configuration determines the duration for which the authentication server would be

available if the server is marked as unavailable.

l TACACS—To configure TACACS server, select the TACACS option and configure the following parameters:

Parameter Description

Name Enter a name for the server.

IPaddress Enter the IP address of the TACACS server.

Auth Port Enter aTCPIPport used by the server. The default port number is 49.

Shared Key Enter a secret key of your choice to authenticate communication between the TACACS+ client and

server.

Retype Key Re-enter shared key.

Timeout Enter a number between 1 and 30 seconds to indicate the timeout period for TACACS+ requests.

The default value is 20 seconds.

Retry Count Enter a number between 1 and 5 to indicate the maximum number of authentication attempts. The

default value is 3.

Dead time Specify a dead time in minutes within the range of 1-1440 minutes. The default dead time interval is

5 minutes.

Session

authorization

Enables or disables session authorization. When enabled, the optional authorization session is

turned on for the admin users. By default, session authorization is disabled.

Table 33: TACACS Configuration Parameters

You can also add TACACSserver by selecting the New option when configuring authentication parameters for

management users. For more information, see Configuring Authentication Parameters for Management Users

on page 154.

l CPPMServer for AirGroup CoA—To configure a CPPM server used for AirGroup CoA (Change of

Authorization), select the CoA only checkbox. The RADIUSserver is automatically selected.