TACACS+ Authentication

CloudControl supports TACACS+ authentication, which is an Authentication, Authorization and Accounting (AAA) protocol.

Note: OTP is not supported with TACACS+.

  1. Select Configuration > Two-Factor.

  2. On the Two-Factor Configuration page, click the TACACS+ Server tab.
  3. Check the Enable TACACS+ Authentication Server checkbox.

  4. Enter the following:

    Field

    Description

    TACACS+ Authentication Server IP Address

    Enter the IP address for the RADIUS authentication server.

    TACACS+ Authentication Server Port Number

    Enter the port number for RADIUS authentication server messages.

    TACACS+ Authentication Server Secret Message

    Enter the secret message for the RADIUS server.

    Test Account Username

    Enter the username of the test account to be used to authenticate the TACACS+ server.

    Test Account Password

    Enter the password of the test account to be used to authenticate the TACACS+ server.

  5. Select the Authentication Mode. This can be one of the following: 

    • CHAP—Challenge-Handshake Authentication Protocol.
    • PAP—Password Authentication Protocol.
    • ASCII—Transmits the username and password in clear, unencrypted text.
  6. Click Apply.