Manualshelf

Users Guide

ManualsBrandsDell ManualsAccess PlatformsW-Airwave
41424344454647484950
Dell PowerConnect W-AirWave |User Guide Configuring AMP | 49
Configuring TACACS+ Authentication
For TACACS+ capability, you must configure the IP/Hostname of the TACACS+ server, the TCP port, and the
server shared secret. This TACACS+ configuration is for AMP users, and does not affect APs or users logging into
APs.
1. Go to the AMP Setup > Authentication page. This page displays current status of TACACS+. Figure 23
illustrates this page when neither TACACS+ nor RADIUS authentication is enabled in AMP.
Figure 23 TACACS+ section AMP Setup > Authentication
2. Select No to disable or Yes to enable TACACS+ authentication. If you select Yes, several new fields appear.
Complete the fields described in Table 23.
3. Select Save and continue with additional steps.
4. To configure Cisco ACS to work with AMP, you must define a new service named AMP that uses https on the
ACS server.
The AMP https service is added to the TACACS+ (Cisco) interface under the Interface Configuration
tab.
Select a checkbox for a new service.
Enter AMP in the service column and https in the protocol column.
Select Save.
5. Edit the existing groups or users in TACACS to use the “AMP service” and define a role for the group or user.
The role defined on the Group Setup page in ACS must match the exact name of the role defined on the
AMP Setup > Roles page.
The defined role should use the following format: role=<name_of_AMP_role>. One example is as
follows:
role=DormMonitoring
Table 23 AMP Setup > Authentication Fields and Default Values
Field Default Description
Primary Server Hostname/IP
Address
N/A Enter the IP address or the hostname of the primary TACACS+ server.
Primary Server Port 49 Enter the port for the primary TACACS+ server.
Primary Server Secret N/A Specify and confirm the primary shared secret for the primary TACACS+
server.
Secondary Server Hostname/IP
Address
N/A Enter the IP address or hostname of the secondary TACACS+ server.
Secondary Server Port 49 Enter the port for the secondary TACACS+ server.
Secondary Server Secret N/A Enter the shared secret for the secondary TACACS+ server.