Adding a RADIUS Server or TACACS Server for Authentication

You can use the User Management page to configure a RADIUS server or TACACS server for system authentication.

To configure a RADIUS server or TACACS server:

  1. In the J-Web interface, select Configure > System Properties > User Management.

    Note: After you make changes to the configuration in this window, you must commit the changes immediately for them to take effect. To commit all changes to the active configuration, select Commit Options > Commit. See Using the Commit Options to Commit Configuration Changes (J-Web Procedure) for details about all commit options.

  2. Click Edit. The Edit User Management dialog box appears.
  3. Select the Authentication Method and Order tab.
  4. In the Authentication method and order section, select the authentication method from the Available Methods list. Select a method and click the select button next to the Available Methods list.

    The selected methods are listed in the Selected Methods list. To remove any method from the Selected Methods list, select a method and click the deselect button.

  5. Arrange the order of the authentication methods by selecting the method and clicking the up and down arrow buttons next to the Selected Methods list.
  6. In the RADIUS section or TACACS section, click Add. Either the Add Radius Server dialog box or Add TACACS Server dialog box appears.
  7. In the IP address field, enter the server’s 32-bit IP address.
  8. In the Password and Confirm password fields, enter the secret password for the server and verify your entry.
  9. In the Server port field, enter the appropriate port.
  10. In the Source address field, enter the source IP address of the server.
  11. In the Time out field, specify the amount of time (in seconds) the device should wait for a response from the server.
  12. In the Radius Server dialog box, under Retry Attempts, specify the number of times the server should try to verify the user’s credentials.
  13. In the TACACS server dialog box, optionally select Single Connection to have the software maintain one open TCP connection to the server for multiple requests, rather than opening a connection for each connection attempt.
  14. Click OK.
  15. To edit the server details, select the IP address and click Edit.
  16. To delete a server, select an IP address and click Delete.