When the administrative user goes to Config Æ Authentication and selects TACACS+ from the “Authentication Type” pull-down menu, the fields shown in the following figure appear.Config Æ Authentication: TACACS+The administrative user must obtain the needed information about the TACACS+ server from the server’s administrator. The administrative user must configure the server by filling in these fields or choosing whether to check or leave unchecked the checkbox that displays when the TACACS+ authentication type is selected:
•
• Perform this procedure to identify the authentication server when the OnBoard or any of the connected devices is to use the TACACS+ authentication method or any of its variations (Local/TACACS+, TACACS+/Local, or TACACS+ Down/Local).Work with the TACACS+ server’s administrator to ensure that following types of accounts are set up on the TACACS server and that the administrators of the OnBoard and connected devices know the passwords assigned to the accounts:
• If TACACS+ authentication is specified for the OnBoard, accounts for all users who need to log into the OnBoard.
• If TACACS+ authentication is specified for devices, accounts for users who need access to the connected devices.
2. Go to Config Æ Authentication and select TACACS+ from the “Authentication Type” pull-down menu.
3. Enter the IP address of the first authentication server in the “First Authentication Server” field.
4. Enter the IP address of a second authentication server in the “Second Authentication Server” field.
6. Enter the IP address of the second accounting server in the “Second Accounting Server” field.