Note: When configuring the TACACS+ server, the user-group format for the user on the server should contain the name of a group configured on SX II.
When configuring the TACACS+ server, a dominionsx service should be added. A user-group attribute under this service should contain the name of a group configured on the SX II . A user-dialback field under this service would contain the modem dialback number for this user.
You can use the Terminal Access Controller Access-Control System Plus (TACACS+) to authenticate SX II users instead of using local authentication.
Click User Management > Authentication Settings to open the Authentication Settings page.
Click the TACACS+ radio button to enable the TACACS+ section of the page.
The section expands. If it does not, click the section header to expand it.
Under Primary TACACS+, type the IP address of the TACACS+ server and the port on which it is listening (default is 49) in the IP Address and Port fields.
Fill in the Shared Secret field. Also known as a key, this field is necessary for encryption and mutual identification with the TACACS+ server.
The Timeout is recorded in seconds and default timeout is 1 second, but can be changed as required.
The timeout is the length of time the SX II waits for a response from the TACACS+ server before sending another authentication request.
The default number of retries is 3 Retries.
This is the number of times the SX II will send an authentication request to the TACACS+ server.
If you have a backup TACACS+ server, enter the same information in the Secondary TACACS+ fields.