HP StorageWorks Enterprise File Services WAN Accelerator 3.0.4 deployment guide (AG421-96001, March 2007)

116 12 - RADIUS AND TACACS+ AUTHENTICATION

To configure TACACS+

with Cisco Secure ACS

1. Log in to Cisco Secure ACS.

2. Click Interface Configuration.

3. Click TACACS+(CiscoIOS).

4. Under New Services:

 Check the User box.

 Under Service, type rbt-exec.

 Under Protocol, type unknown.

5. Click Submit.

6. Click User Setup and locate the name of the user you want to grant administrative

access to the HP EFS WAN Accelerator.

7. At the bottom of the window, locate the TACACS+ Settings box.

8. Check the rbt-exec unknown and Custom attributes boxes.

9. In the small Custom Attributes window, type:

local-user-name=admin

10. Click Submit.

To update HP EFS

WAN Accelerator

configuration

• Add the following line to the HP EFS WAN Accelerator configuration:

aaa authorization map default-user monitor

Configuring RADIUS Authentication in the HP

EFS WAN Accelerator

The following section describes the basic steps for configuring RADIUS

authentication in the HP EFS WAN Accelerator. For more information and detailed

procedures, see the HP StorageWorks Enterprise File Services WAN Accelerator

Installation and Configuration Guide and the HP Enterprise File Services WAN

Accelerator Management Console User Guide.

You prioritize RADIUS authentication methods for the system and set the

authorization policy and default user.

IMPORTANT: Make sure to put the authentication methods in the order in which you want

authentication to occur. If authorization fails on the first method, the next method is attempted,

and so forth, until all the methods have been attempted.