HP Intelligent Management Center v5.1 TACACS+ Authentication Manager Administrator Guide
22
4. Configure the following common parameters in the Device Configuration area:
Shared Key—Enter a shared key, which is used for the device and TAM to authenticate each
other. The value must be the same as what is configured on the device at the CLI.
Authentication Port—Enter the port for TAM to listen for authentication, authorization, and
accounting packets. The port must be the same as what is configured on the device at the CLI.
The default is 49.
Device Area—Click the Device Area icon . The Select Device Area window appears. Select
one or multiple areas and click OK. To delete a device area, click . Device area is an
important part of an authorization scenario. For more information, see "Managing device
areas."
Device Type—Click the Device Type icon . The Select Device Type window appears. Select a
device type and click OK. To delete a device type, click . Device type is an important part of
an authorization scenario. For more information, see "Managing device types."
Single Connection—Select Supported or Not Supported from the list. The former indicates that
TAM supports establishing multiple sessions in one TCP connection when communicating with
the device. The latter indicates that TAM supports establishing only one session in one TCP
connection when communicating with the device. The configuration of this field must be the
same as what is configured on the device at the CLI. If the device supports single connections,
you can enable or disable this feature on the device. If you enable this feature on the device,
use Supported in TAM. If you disable this feature on the device, use Not Supported in TAM. If
the device does not support single connections, HP recommends that you use Supported.
Watchdog—Select Supported or Not Supported from the list. The former indicates that TAM
keeps the online status and duration of an online device user by receiving Watchdog packets
sent by the device. The latter indicates that TAM does not keep the online status and duration
of an online device user because it does not receive Watchdog packets sent by the device. If
the device does not support sending Watchdog packets, or the device supports Watchdog but
sending Watchdog packets is disabled, use Not Supported. If the device supports sending
Watchdog packets, and sending Watchdog packets is enabled, use Supported.
Description—Description of the device for easy maintenance.
5. Click Select in Device List to select devices from the IMC Platform.
You can choose to select access devices from the IMC Platform as described in this step, manually
add access devices as described in step 6, or perform both operations.
You cannot add devices by selecting devices from the Device List in the following cases:
The nas-ip command is configured at the CLI and the device IP in the IMC platform is not the
IP address configured in the nas-ip command.
The nas-ip command is not configured at the CLI and the device IP in the IMC platform is not
the IP address of the interface that connects the device to TAM.
You can select devices by view or by advanced query.
Selecting devices by view
a. Click the By View tab. The view options include IP View, Device View, and Custom View.
b. Click of the target view to expand the view, and then click a sub-view. All devices in the
sub-view appear in the Devices Found list on the right.
To add one or more devices from the Devices Found list to the Selected Devices list, select the
devices and click . To add all the found devices to the Selected Devices list, click .