Cisco Systems OL-27172-01 Mobility Aid User Manual

Open as PDF

of 322

13-19

Cisco Broadband Access Center 3.8 Administrator Guide

OL-27172-01

Chapter 13 Configuring CWMP Service Security

Configuring Security for RDU Services

You can select one of the authentication modes by using the administrator user interface. Local

authentication option is the default.

RDU Authentication Mode Settings

You can select either local or TACACS+ authentication by using the administrator user interface. To

enable TACACS+ authentication:

Step 1 Choose Configuration on either the Primary Navigation bar or Main Menu page.

Step 2 Choose Defaults from the Secondary Navigation bar.

The Configure Defaults page appears.

Step 3 Click TACACS+ Defaults link on the left pane.

The TACACS+ Defaults page appears.

Step 4 Check the TACACS+ Authentication check box.

Step 5 Set the TACACS+ server and encryption key.

You can specify up to maximum of 5 TACACS+ servers. The order of the entries determines the order

in which the TACACS+ servers are tried.

Step 6 Set the TACACS+ Client Read/Write timeout.

This is the time that the TACACS+ client waits for a TACACS+ server to reply to TACACS+ protocol

requests. The range is from 1 to 300 seconds. The default is 5 seconds and applies to all TACACS+

servers.

Step 7 Set the TACACS+ Client Maximum retries.

This is the number of times that the TACACS+ client attempts a valid TACACS+ protocol exchange with

a TACACS+ server if it fails to respond to initial request. The range is from 0 to 10. The default is 1 and

applies to all TACACS+ server defined.

Step 8 Click Submit.

TACACS+ Authentication and Authorization in RDU

When TACACS+ authentication is enabled, the client attempts user login authentication to each server

sequentially in the list until a successful authentication exchange is executed, or the list is exhausted. If

the list is exhausted, the client automatically falls back into the local authentication mode (using the

local system password).

After the TACACS+ authentication is done, the user authorization (i.e, user role as Admin, read-write

user or read-only user) is retrieved from the RDU database. You can specify the user role (read-write or

a read-only) in the Add Users page in the administrator user interface.

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems OL-27172-01 Mobility Aid User Manual