HP StorageWorks Enterprise File Services WAN Accelerator Deployment Guide (November 2005)
HP EFS WAN ACCELERATOR DEPLOYMENT GUIDE 101
9 - RADIUS AND TACACS+
A
UTHENTICATION
2. At your system prompt, enter the following set of commands:
>tar xvzf tac_plus_v9a.tar.gz
>cd tac_plus_v9a
>./configure
3. In a text editor, open the Makefile and uncomment the OS=-DLINUX line
(or other lines appropriate for the operating system of the host).
4. On Linux, in a text editor open the tac_plus.h file and uncomment the
#define CONST_SYSERRLIST line.
5. At the system prompt, enter:
>make tac_plus
6. As the root user, enter the following command:
>make install
7. Add users to the TACACS server by editing the /usr/local/etc/
tac_plus.conf file. For example:
key = testtacacs
user = admin {
pap = cleartext "tacadmin"
user = monitor {
pap = cleartext "tacmonitor"
user = tacuser {
pap = cleartext "tacpass"
service = rbt-exec {
local-user-name = "monitor"
}
The secret you specify here must also be specified in the HP EFS WAN
Accelerator when you set up TACACS+ server support. For detailed
information, see the HP EFS WAN Accelerator Management Console User Guide.
The tacuser is a monitor user as specified by local-user-name.
NOTE: The chap, opap, and arap variables can be specified in a similar manner, but
only pap is needed.
8. Start the server by executing:
>/usr/local/sbin/tac_plus -C /usr/local/etc/tac_plus.conf
Configuring RADIUS Authentication
in the HP EFS WAN Accelerator
The following section provides the basic steps for configuring RADIUS
authentication in the HP EFS WAN Accelerator.