HP StorageWorks Enterprise File Services WAN Accelerator 2.1.7 Deployment Guide (407118 - 003, June 2006)
HP STORAGEWORKS ENTERPRISE FILE SERVICES WAN ACCELERATOR 2.1.7 DEPLOYMENT GUIDE 105
9 - RADIUS AND TACACS+
A
UTHENTICATION
To download
TACACS+
1. Download TACACS+ from:
http://www.gazi.edu.tr/tacacs/get.php?src=tac_plus_v9a.tar.gz.
2. At your system prompt, enter the following set of commands:
>tar xvzf tac_plus_v9a.tar.gz
>cd tac_plus_v9a
>./configure
3. In a text editor, open the Makefile and uncomment the OS=-DLINUX line (or
other lines appropriate for the operating system of the host).
4. On Linux, in a text editor open the tac_plus.h file and uncomment the #define
CONST_SYSERRLIST line.
5. At the system prompt, enter:
>make tac_plus
6. As the root user, enter the following command:
>make install
7. Add users to the TACACS server by editing the /usr/local/etc/tac_plus.conf file.
For example:
key = testtacacs
user = admin {
pap = cleartext "tacadmin"
user = monitor {
pap = cleartext "tacmonitor"
user = tacuser {
pap = cleartext "tacpass"
service = rbt-exec {
local-user-name = "monitor"
}
The secret you specify here must also be specified in the HP EFS WAN Accelerator
when you set up TACACS+ server support. For detailed information, see the HP
Enterprise File Services WAN Accelerator Management Console User Guide.
The tacuser is a monitor user as specified by local-user-name.
NOTE: The chap, opap, and arap variables can be specified in a similar manner, but only pap
is needed.
8. Start the server by executing:
>/usr/local/sbin/tac_plus -C /usr/local/etc/tac_plus.conf