User manual

 16‐PortGigabitEthernetPoE+Web‐ManagedSwitchwith2SFPPorts

61



6.10 TERMINALACCESSCONTROLLERACCESS‐CONTROLSYSTEM(TACACS+)

TerminalAccessControllerAccess‐ControlSystem(TACACS,usuallypronouncedlike

"tack‐axe")referstoafamilyofrelatedprotocolshandlingremoteauthenticationand

relatedservicesfornetworkedaccesscontrolthroughacentralizedserver.Theoriginal

TACACSprotocol,whichdatesbackto1984,wasusedforcommunicatingwithanauthenticationserver,commonin

olderUNIXnetworks;itspawnedrelatedprotocols.

TerminalAccessControllerAccess‐ControlSystemPlus(TACACS+)isaprotocolreleasedasanopenstandardbeginningin

1993.AlthoughderivedfromTACACS,TACACS+isaseparateprotocolthathandlesauthentication,authorizationand

accounting(AAA)services.ComparedtotheopenstandardRADIUSauthentication(section6.11Radius),TACACS+

encryptstheentirepayloadwhereasRADIUSonlyencryptspasswords. 



Item Description

GlobalConfig Globalparametersthatcanbeoverwrittenbyport‐specificconfiguration.

Servertimeout TheglobaltimeoutintervaldetermineshowlongtheIntellinetswitchwaitsfor

responsesfromTACACS+serversbeforedeclaringatimeoutfailure.

Serverretry

count

SpecifiesthenumberofretryattemptsthatwillbemadetoestablishaTransmission

ControlProtocol(TCP)connectionbetweenaTACACS+clientandtheTACACS+server.

Thedefaultvalueis3.

Conversation/

Connect

Thisparameterdefineshowmanyconnectionstherewillbebetweenrouterdaemon.

Only:“single‐connection"

Thedaemonmustsupportsingle‐connectionmodeforthistobeeffective;otherwise,

theconnectionbetweenthenetworkaccessserverandthedaemonwilllockuporyou

willreceivespuriouserrors.

Keytype 0:Keyvalueincleartextformat

7:Keyvalueistype‐7encrypted.

Key Typeinthekeyvalue.



