HP StorageWorks Enterprise File Services WAN Accelerator 3.0.4 deployment guide (AG421-96001, March 2007)
HP STORAGEWORKS ENTERPRISE FILE SERVICES WAN ACCELERATOR DEPLOYMENT GUIDE 111
12 - RADIUS AND TACACS+
A
UTHENTICATION
CHAPTER 12 RADIUS and TACACS+
Authentication
In This Chapter This chapter describes how to configure Remote Authentication Dial-In User Service
(RADIUS) or Terminal Access Controller Access Control System (TACACS+)
authentication for the HP EFS WAN Accelerator. It includes the following sections:
“Introduction to Authentication,” next
“Configuring a RADIUS Server with FreeRADIUS” on page 112
“Configuring a TACACS+ Server with Free TACACS+” on page 114
“Configuring TACACS+ with Cisco Secure Access Control Server” on page 115
“Configuring RADIUS Authentication in the HP EFS WAN Accelerator” on
page 116
“Configuring TACACS+ Authentication in the HP EFS WAN Accelerator” on
page 117
Introduction to Authentication
The HP EFS WAN Accelerator can use a RADIUS or TACACS+ authentication
system for logging in administrative and monitor users. The following methods for
user authentication are provided with the HP EFS WAN Accelerator:
local
radius
tacacs+
The order in which authentication is attempted is based on the order specified in the
Authentication, Authorization, Accounting (AAA) method list. The local value must
always be specified in the method list.
The authentication methods list provides backup methods if a method fails to
authenticate a user. Failure is defined as no response for the method. If a deny is
received from the method being tried, no other methods are attempted.