beautypg.com

ZyXEL Communications XGS-4526 User Manual

Page 228

background image

Chapter 25 AAA

XGS-4526 User’s Guide

228

The following table describes the labels in this screen.

Table 69 Advanced Application > AAA > TACACS+ Server Setup

LABEL

DESCRIPTION

Authentication
Server

Use this section to configure your TACACS+ authentication settings.

Mode

This field is only valid if you configure multiple TACACS+ servers.

Select index-priority and the Switch tries to authenticate with the first
configured TACACS+ server, if the TACACS+ server does not respond
then the Switch tries to authenticate with the second TACACS+ server.

Select round-robin to alternate between the TACACS+ servers that it
sends authentication requests to.

Timeout

Specify the amount of time in seconds that the Switch waits for an
authentication request response from the TACACS+ server.

If you are using index-priority for your authentication and you are
using two TACACS+ servers then the timeout value is divided between
the two TACACS+ servers. For example, if you set the timeout value to
30 seconds, then the Switch waits for a response from the first TACACS+
server for 15 seconds and then tries the second TACACS+ server.

Index

This is a read-only number representing a TACACS+ server entry.

IP Address

Enter the IP address of an external TACACS+ server in dotted decimal
notation.

TCP Port

The default port of a TACACS+ server for authentication is 49. You need
not change this value unless your network administrator instructs you to
do so.

Shared Secret

Specify a password (up to 32 alphanumeric characters) as the key to be
shared between the external TACACS+ server and the Switch. This key is
not sent over the network. This key must be the same on the external
TACACS+ server and the Switch.

Delete

Check this box if you want to remove an existing TACACS+ server entry
from the Switch. This entry is deleted when you click Apply.

Apply

Click Apply to save your changes to the Switch’s run-time memory. The
Switch loses these changes if it is turned off or loses power, so use the
Save link on the top navigation panel to save your changes to the non-
volatile memory when you are done configuring.

Cancel

Click Cancel to begin configuring this screen afresh.

Accounting
Server

Use this section to configure your TACACS+ accounting settings.

Timeout

Specify the amount of time in seconds that the Switch waits for an
accounting request response from the TACACS+ server.

Index

This is a read-only number representing a TACACS+ accounting server
entry.

IP Address

Enter the IP address of an external TACACS+ accounting server in dotted
decimal notation.

TCP Port

The default port of a TACACS+ accounting server is 49. You need not
change this value unless your network administrator instructs you to do
so.

See also other documents in the category ZyXEL Communications Computer Accessories: