Selecting Configuration>Security>Authentication>Tacacs+ in Expert mode brings up the TACACS+ form where an administrators can enable group authorization checking.By enabling the “Enable Raccess Authorization” check box, an additional level of security checking is implemented. After each user/group is successfully authenticated through the standard login procedure, the KVM uses TACACS+ server to authorize whether or not each user/group is allowed access to the connected devices.By default the “Enable Raccess Authorization” is disabled allowing all users full authorization. When this feature is enabled by placing a check mark in the box, users are denied access unless they have the proper authorization, which must be set on the TACACS+ authentication server itself.
1. On the server, add “raccess” service to the user configuration and define which group or groups the user belongs to.
3. “Enable Raccess Authorization” on KVM through the WMI at Configuration>Security>Authentication>Tacacs+ form.