Allied Telesis AT-S62 User Manual
Page 703
AT-S62 Menus Interface User’s Guide
Section VII: Management Security
703
Use per-server secret [Y/N] ->
If you will be specifying more than one TACACS+ server and if
all of the servers use the same encryption secret, you can
answer No to this prompt and enter the encryption secret
using the TAC Global Secret parameter.
However, if you are specifying only one TACACS+ server or if
the servers have difference encryption secrets, then respond
with Yes to this prompt. You will see:
Enter per-server secret [max 40 characters] ->
Use this prompt to enter the encryption secret for the
TACACS+ server whose IP address you are specifying.
4 - TAC Global Secret
If all of the TACACS+ servers have the same encryption secret,
rather then entering the same secret when you enter the IP
addresses, you can use this option to enter the secret just
once.
5 - TAC Timeout
This parameter specifies the maximum amount of time the
switch waits for a response from a TACACS+ server before
assuming the server will not respond. If the timeout expires
and the server has not responded, the switch queries the next
TACACS+ server in the list. If there are not any more servers,
the switch defaults to the standard Manager and Operator
accounts. The default is 10 seconds. The range is 1 to 60
seconds.
c. After you have finished configuring the parameters in the
TACACS+ Client Configuration menu, type R to return to the
Authentication Menu, shown in Figure 244 on page 701.
d. From the Authentication Menu, type 1 to select Server-based
Authentication. The following prompt is displayed:
Server Based User Authentication (E-Enabled, D-
Disabled) ->
e. Type E to enable server-based authentication on the switch.
The TACACS+ client software is now active on the switch.
f.
After making changes, type R until you return to the Main Menu.
Then type S to select Save Configuration Changes.
7. To configure the RADIUS protocol, from the Authentication Menu in