Cisco Cisco Prime Optical 10.6 Riferimenti tecnici

Cisco Prime Optical 10.6 Basic External Authentication

Configuring Basic External Authentication

<constructor-arg value="RADIUS_SERVER_HOSTNAME" />

<constructor-arg value="SHARED_SECRET" />

<constructor-arg>

<bean

class="net.jradius.client.auth.PAPAuthenticator" />

</constructor-arg>

<constructor-arg value="AUTHENTICATION_PORT" />

<constructor-arg value="ACCOUNTING_PORT" />

<constructor-arg value="TIMEOUT_IN_SECS" />

<constructor-arg value="NUMBER_OF_RETRIES" />

</bean>

</list>

</property>

</bean>

-->

</beans>

Step 4

In the “radiusAuthenticationHandler” bean definition, replace the following parameters with the
appropriate values:

•

RADIUS_SERVER_HOSTNAME

•

SHARED_SECRET

•

AUTHENTICATION_PORT

•

ACCOUNTING_PORT

•

TIMEOUT_IN_SECS

•

NUMBER_OF_RETRIES

Step 5

Save and close the file.

Step 6

Enter the following command to change the read permissions:

chmod 660

/opt/CiscoTransportManagerServer/tomcat/webapps/SSO/WEB-INF/authenticationHandlers.xml

Step 7

Go to the /opt/CiscoTransportManagerServer/cfg/CTMServer.cfg file and set the “ext-auth” property to
true.

Ext-auth=true

Step 8

Enter the opticalctl start command to restart the Prime Optical server.

Configuring Basic Authentication for TACACS+

Configuring basic authentication for TACACS+ requires editing the deployerConfigContext.xml file.

Before You Begin

Create local users as described in

Setting the Environment, page 3

Perform this task to configure basic authentication for TACACS+:

Step 1

If the Prime Optical server is running, enter the opticalctl stop command to stop the server.