Two servers can be defined to work with TACACS+ functions. One server acts as a backup in case the other one fails. When logging in via telnet or WEBconfig, the user can select the server to be used.
The parameters for configuring the TACACS+ server are to be found under:
LANconfig:
Command line:
- Server address
- Address of the TACACS+ server to which requests for authentication, authorization and accounting are to be
forwarded.
Possible values:
- Valid DNS resolvable name, or valid IPv4 or IPv6 address.
- Empty
- Source address (opt.)
- Optionally you can configure a loopback address here.
Possible values:
- Name of the IP networks whose address should be used
- "INT" for the address of the first intranet
- "DMZ" for the address of the first DMZ
- LB0 to LBF for the 16 loopback addresses
- Any valid IP address
- Empty
- Compatibility mode
- TACACS+ servers are available as open-source or commercial versions, each of which works with different messages. The
compatibility mode enables the processing of messages from free TACACS+ servers.
Possible values:
- Activated, deactivated
- Deactivated
