Two servers can be defined to work with TACACS+ functions. One server acts as a backup in case the other one fails. When logging in via telnet or WEBconfig, the user can select the server to be used.
The parameters for configuring the TACACS+ server are to be found under the following paths:
WEBconfig: LCOS menu tree / Setup / TACACS+ / Server
- Server address
Address of the TACACS+ server to which requests for authentication,
authorization and accounting are to be forwarded.
Possible values:
- Valid DNS resolvable name or valid IP address.
- Blank
- Loopback address
Optionally you can configure a loopback address here.
- Possible values:
- Name of the IP networks whose addresses are to be used
- "INT" for the address of the first intranet.
- "DMZ" for the address of the first DMZ.
- LB0 to LBF for the 16 loopback addresses
- Any valid IP address
- Blank
- Compatibility mode
TACACS+ servers are available as open-source or commercial versions,
each of which works with different messages. The compatibility mode enables
the processing of messages from free TACACS+ servers.
Possible values:
- Activated, deactivated
- Deactivated