beautypg.com

Tacacs authentication, Tacacs+ authentication, Tacacs+ authorization – Brocade Multi-Service IronWare Security Configuration Guide (Supporting R05.6.00) User Manual

Page 48

background image

30

Multi-Service IronWare Security Configuration Guide

53-1003035-02

Configuring TACACS or TACACS+ security

1

TACACS authentication

NOTE

Also, multiple challenges are supported for TACACS+ login authentication.

The following events occur when TACACS authentication takes place.

1. A user attempts to gain access to the Brocade device by doing one of the following:

Logging into the device using console, Telnet, SSH, or the Web Management Interface

Entering the Privileged EXEC level or CONFIG level of the CLI

2. The user is prompted for a username and password.

3. The user enters a username and password.

4. The Brocade device sends a request containing the username and password to the TACACS

server.

5. The username and password are validated in the TACACS server’s database.

6. If the password is valid, the user is authenticated.

TACACS+ authentication

The following events occur when TACACS+ authentication takes place.

1. A user attempts to gain access to the Brocade device by doing one of the following:

Logging into the device using console, telnet, SSH, or the Web Management Interface

Entering the Privileged EXEC level or CONFIG level of the CLI

2. The user is prompted for a username.

3. The user enters a username.

4. The Brocade device obtains a password prompt from a TACACS+ server.

5. The user is prompted for a password.

6. The user enters a password.

7. The Brocade device sends the password to the TACACS+ server.

8. The password is validated in the TACACS+ server’s database.

9. If the password is valid, the user is authenticated.

TACACS+ authorization

The Brocade devices support two kinds of TACACS+ authorization:

Exec authorization determines a user’s privilege level when they are authenticated.

Command authorization consults a TACACS+ server to get authorization for commands entered
by the user.

The following events occur when TACACS+ exec authorization takes place.

See also other documents in the category Brocade Computer Accessories: