beautypg.com

Tacacs+ flow, Igure, Authorization – GarrettCom Magnum MNS-6K User Manual

Page 89

background image

M A G N U M 6 K S W I T C H E S , M N S - 6 K U S E R G U I D E

TACACS+ Flow

TACACS works in conjunction with the local user list on the MNS-6K software (operating
system.) Please refer to

User Management

for adding users on the MNS-6K software. The

process of authentication as well as authorization is shown in the flow chart below.

Login

User in Local

User List?

Yes

Is User Manager?

Yes

Login as Manager

Login as Operator

No

No

TACACS+ Enabled?

No

Logout

Yes

Connect to

TACACS server to

authenticate

Authentication failure

Logout

Authenticated

TACACS+

authorization

Authorized as

Operator or

Authorization Failure

Login as Operator

Authorized as

Manager

Login as Manager

Start

Additional

Servers?

Logout

Connection failure

No

Yes

Login

User in Local

User List?

Yes

Is User Manager?

Yes

Login as Manager

Login as Operator

No

No

TACACS+ Enabled?

No

Logout

Yes

Connect to

TACACS server to

authenticate

Connect to

TACACS server to

authenticate

Authentication failure

Logout

Authenticated

TACACS+

authorization

Authorized as

Operator or

Authorization Failure

Login as Operator

Authorized as

Manager

Login as Manager

Start

Additional

Servers?

Additional

Servers?

Logout

Connection failure

No

Yes

F

IGURE

60

Flow chart describing the interaction between local users and TACACS authorization

The above flow diagram shows the tight integration of TACACS+ authentication with the local
user-based authentication. There are two stages a user goes through in TACACS+. The first stage

88

See also other documents in the category GarrettCom Computer Accessories: