User Manual
Table Of Contents
- S3300 Smart Managed Pro Switch
- Contents
- 1. Getting Started
- Getting Started with the NETGEAR Switch
- Switch Management Interface
- Connect the Switch to the Network
- Discover a Switch in a Network with a DHCP Server
- Discover a Switch in a Network without a DHCP Server
- Configure the Network Settings on the Administrative System
- Access the Management Interface from a Web Browser
- Understand the User Interfaces
- Interface Naming Convention
- Configuring Interface Settings
- Online Help
- Registration
- 2. Configure System Information
- 3. Configuring Switching
- 4. Configuring Routing
- 5. Configuring Quality of Service
- 6. Managing Device Security
- 7. Maintenance
- 8. Monitoring the System
- A. Configuration Examples
- B. Hardware Specifications and Default Values
Managing Device Security
247
S3300 Smart Managed Pro Switch
Configure TACACS+
TACACS+ provides a centralized user management system, while still retaining consistency
with RADIUS and other authentication processes. TACACS+ provides the following services:
• Authentication. Provides authentication during login and through user names and
user-defined passwords.
• Authorization. Performed at login. When the authentication session is completed, an
authorization session starts using the authenticated user name. The TACACS+ server
checks the user privileges.
The TACACS+ protocol ensures network security through encrypted protocol exchanges
between the device and TACACS+ server.
The TACACS+ folder contains links to the features described in the following sections.
• Configure TACACS+ on page 247
• TACACS+ Server Configuration on page 247
TACACS+ Configuration
The TACACS+ Configuration screen contains the TACACS+ settings for communication
between the switch and the TACACS+ server you configure by using the inband
management port.
To configure global TACACS+ settings:
1. Select Security > Management Security > TACACS+ > TACACS+ Configuration.
2. In the Key String field, specify the authentication and encryption key for TACACS+
communications between the switch and the TACACS+ server.
The valid range is 0–128 characters. The key must match the key configured on the
TACACS+ server.
3. In the Connection Timeout field, specify the maximum number of seconds allowed to
establish a TCP connection between the switch and the TACACS+ server.
The valid range is 1–30 seconds. Default is 5 seconds.
4. Click the Apply button.
TACACS+ Server Configuration
Use the TACACS+ Server Configuration screen to configure up to five TACACS+ servers
with which the switch can communicate.
To configure TACACS+ server:
1. Select Security > Management Security > TACACS+ > Server Configuration.
2. In the TACACS Server field, specify the IP address of the TACACS server.
3. In the Priority field, specify the priority for the TACAS+ server.