IBM Partner Pavilion BMD00082 Benutzerhandbuch
SmartConnect User’s Guide
74
Chapter 6: Configuring Switch Access
BMD00082, February 2009
TACACS+ Authentication
The switch supports authentication and authorization with networks using the Cisco Systems
TACACS+ protocol. The switch functions as the Network Access Server (NAS) by interacting
with the remote client and initiating authentication and authorization sessions with the
TACACS+ access server. The remote user is defined as someone requiring management access
to the switch either through a data or management port.
TACACS+ protocol. The switch functions as the Network Access Server (NAS) by interacting
with the remote client and initiating authentication and authorization sessions with the
TACACS+ access server. The remote user is defined as someone requiring management access
to the switch either through a data or management port.
TACACS+ Authentication Features
Authentication is the action of determining the identity of a user, and is generally done when
the user first attempts to log in to a device or gain access to its services. The switch supports
ASCII inbound login to the device. PAP, CHAP and ARAP login methods, TACACS+ change
password requests, and one-time password authentication are not supported.
the user first attempts to log in to a device or gain access to its services. The switch supports
ASCII inbound login to the device. PAP, CHAP and ARAP login methods, TACACS+ change
password requests, and one-time password authentication are not supported.
Authorization
Authorization is the action of determining a user’s privileges on the device, and usually takes
place after authentication.
place after authentication.
. The authorization levels must be defined on the TACACS+
server.
Configuring TACACS+ Authentication
1.
On the BBI, choose System Settings > Remote User Administration to configure
TACACS+ authentication.
TACACS+ authentication.
2.
In the Tacacs+ section of the window, enter the Tacacs+ Primary Server IP address and
TACACS+ Secret.
TACACS+ Secret.
3.
Select enable for the Tacacs+ option.
4.
Click Apply to make your changes active, and Save to retain changes beyond reboot.
Table 6-4
SmartConnect-Proprietary Attributes for TACACS+
User Access Level
TACACS+ level
user
0
oper
3
admin
6