TACACS+ Configuration
The switch is a Terminal Access Controller Access Control System (TACACS+) client that can use a TACACS+ server to provide centralized security.
TACACS+ provides the following services:
- Authentication--Provides authentication of administrators logging onto the switch by using usernames and user-defined passwords.
- Authorization--Performed at login. After the authentication session is completed, an authorization session starts using the authenticated username. The TACACS+ server then checks user privileges.
The TACACS+ protocol ensures network integrity, through encrypted protocol exchanges between the device and the TACACS+ server.
TACACS+ is supported only with IPv4.
TACACS+ servers cannot be used as 802.1X authentication servers to verify credentials of network users trying to join the networks through the switch.
Some TACACS+ servers support a single connection that enables the device to receive all information in a single connection. If the TACACS+ server does not support this, the device reverts to multiple connections.