Allied Telesis AT-S60 User Manual

Chapter 27: TACACS+ and RADIUS Protocols

Section V: Security Features

546

However, if you are specifying only one TACACS+ server or if the
servers have difference encryption secrets, then respond with Yes
to this prompt. The following prompt is displayed:

Enter per-server secret [max 40 characters] ->

Use this prompt to enter the encryption secret for the TACACS+
server whose IP address you are specifying.

4 - TAC Server Order
You use this selection to indicate the order in which you want the
switch to query the TACACS+ servers for logon authentication. Of
course, you can skip this option if you specified only one IP
address. The default is 1, 2, and 3, in that order.

5 - TAC Global Secret
If all of the TACACS+ servers have the same encryption secret, you
can use this option to enter the secret once rather than entering
the same secret each time you enter an IP addresses.

3 - TAC Timeout
This parameter specifies the maximum amount of time the switch
waits for a response from a TACACS+ server before assuming the
server cannot respond. If the timeout expires and the server has
not responded, the switch queries the next TACACS+ server in the
list. If there aren’t any more servers, the switch defaults to the
standard Manager and Operator accounts. The default is 30
seconds. The range is 1 to 300 seconds.

5. After configuring the parameters, type R until you return to the Main

Menu. Then type S to select Save Configuration Changes.