User manual

ManualsBrandsSignaMax ManualsComputer equipment065-7861

241

242

243

244

245

246

247

248

249

250

Publication date: Feb., 2013

Revision A3

233

z Dead Time :

The Dead Time, which can be set to a number between 0 and 3600 seconds, is the period

during which the switch will not send new requests to a server that has failed to respond to

a previous request. This will stop the switch from continually trying to contact a server that

it has already determined as dead.

Setting the Dead Time to a value greater than 0 (zero) will enable this feature, but only if

more than one server has been configured.

TACACS+ Authorization and Accounting Configuration

z Authorization :

Every CLI commands will be authorized by TACACS+ server when enable. The

authorization table on the TACACS+ server is able to configure which CLI command can

pass successfully. For example, TACACS+ server is set to accept STP command but deny

VLAN command. The server will block the command related to STP which entered by user,

but it can allow VLAN command to configure successfully when user enter VLAN

command.

z Fallback to Local Authorization :

Enable to allow the user who typed wrong account or password to login successfully when

the user account is on the local authorization list of the local switch. For example, when

user entered the wrong account or password, TACACS+ server will refer to the account

information on the local end of switch. If the account is recorded on the local switch, the

user will be authorized to login with the privilege level set on the local switch.

z Accounting :

Enable to record all the commands the user entered. All the log data will be recorded on

the server when enable. For instance, login time, log out time, IGMP setting, VLAN setting,

etc.

RADIUS Authentication Server Configuration

The table has one row for each RADIUS Authentication Server and a number of columns,

which are:

z # :

The RADIUS Authentication Server number for which the configuration below applies.

z Enabled :

Enable the RADIUS Authentication Server by checking this box.

z IP Address/Hostname :

The IP address or hostname of the RADIUS Authentication Server. IP address is

expressed in dotted decimal notation.

z Port :

The UDP port to use on the RADIUS Authentication Server. If the port is set to 0 (zero), the

default port (1812) is used on the RADIUS Authentication Server.

z Secret :

The secret - up to 29 characters long - shared between the RADIUS Authentication Server

and the switch.

RADIUS Accounting Server Configuration

The table has one row for each RADIUS Accounting Server and a number of columns, which

are:

z # :