Specifications

Configuring Authentication Managing TACACS+ Authentication

ShoreTel Mobility Router Administration Guide 96

Managing TACACS+ Authentication

You can specify a TACACS+ server to be used for authentication as needed. Defining a TACACS+

server is optional based on the type of authentication to be used.

Configuring Default TACACS+ Values

You can optionally define default values for certain TACACS+ parameters that apply to all TACACS+

servers you create for the Mobility Router. The following TACACS+ parameters can be defined with

default values:

 Key

 Timeout

 Retransmit

You can define default TACACS+ values, but if you want to use different values for a particular

TACACS+ server, you can specify different values when you create or modify that TACACS+ server.

To configure TACACS+ default values:

1. Select Configuration > System > Authentication > TACACS+.

Figure 42: TACACS+

2. Select an Interface. By default, the IP address associated with the primary interface is chosen.

This interface is used by the Mobility Router for communicating with the UC server.

3. In the Key field, type the password (also known as a shared secret key) used to authenticate to

the TACACS+ server. You must provide the password, and it must be the same password that is

defined on the TACACS+ server. The password can be 1 to 32 characters long and cannot contain

spaces or tabs.

4. In the Timeout field, type the number of seconds that elapse before the connection to the

TACACS+ server times out. The timeout can be a value between 1 through 60 seconds. The

default value is 3 seconds.

Note

This option is only configurable when used in conjunction with ShoreTel Connect.