Step 2, b – IronPort Systems 4108GL User Manual

10-3

Using Authorized IP Managers for Increased Management Security

Overview

Usin

g

Au
th

o

riz

e

d

IP

Ma
nag

e

rs

2.

If TACACS+ is configured and a TACACS+ server issues a prompt, the
correct passwords must be entered from the management station and
verified by the TACACS+ server.

•

If incorrect passwords are entered, the TACACS+ server denies
access to the switch.

•

If TACACS+ is not configured or the TACACS+ server is not accessi-
ble, the switch uses local user-name/password protection (step 3,
below).

3.

If local user-name/password protection is configured, the correct user-
name and password must be entered.

•

If incorrect passwords are entered, the switch denies access.

•

If a manager password is not configured, the switch allows manager-
level (read/write) access.

The preceding information outlines general access security. To understand the
options offered by each security feature, refer to the following.

■

"Using Authorized IP Managers" (this chapter)

■

page 9-3: “Configuring Username and Password Security”

■

page 9-8: “TACACS+ Authentication for Central Control of Switch Access
Security”