Set authentication tacacs, Set authentication securid – Perle Systems IOLAN CSS User Manual

Server Commands 39

Authentication Commands

Set Authentication TACACS+

Set Authentication SecurID

Description Configures TACACS+ authentication settings.
User Level Admin
Syntax

set authentication tacacs+ [port <TCP_port>]

[primary <config_host>] [secondary <config_host>]

[secret <string>]

Options

port

The port number that TACACS+ listens to for authentication requests. The default port
number is 49.

primary

The primary TACACS+ host that is used for authentication.

secondary

The secondary TACACS+ host that is used for authentication, should the primary
TACACS+ host fail to respond.

secret

The TACACS+ shared secret is used to encrypt/decrypt TACACS+ packets in
communications between two devices. The shared secret may be any alphanumeric
string. Each shared secret must be configured on both client and server sides.

Description Configures SecurID authentication settings.
User Level Admin
Syntax

set authentication securid primary [host <config_host>]

[port <TCP_port>] [encryption des|sdi] [legacy on|off]

set authentication securid replica [host <config_host>]

[port <TCP_port>] [encryption des|sdi] [legacy on|off]

set authentication securid reset secret

Options

primary host

The first SecurID server that is tried for user authentication.

replica host

If the first SecurID server does not respond to an authentication request, this is the next
SecurID server that is tried for user authentication.

port

The port number that SecurID listens to for authentication requests. The default port
number is 5500.

encryption

You can specify either

SDI

or

DES

encryption for SecurID server communication. The

default is

SDI

encryption.

legacy

If you are running SecurID 3.x or 4.x, you need to run in

Legacy Mode

. If you are

running SecurID 5.x or above, do not select

Legacy Mode

.

reset secret

Resets the SecurID secret (password) in the IOLAN.