Filter
Top Products
TACACS
Using the CLI:
config system admin
edit tacuser
set remote-auth enable
set wildcard enable
set remote-group <group>
set accprofile <profile>
end
end
User Accounts
User accounts can be used to identify a network user and determine what parts of the network the user is allowed
to access.
Configuring a User Account
config user tacacs+
edit <tacserver>
set authen-type {ascii | auto | chap | ms_chap | pap}
set authorization enable
set key <authorization_key>
set server <server>
end
end
Configuring a User Group
config user group
edit <tacgroup>
set member <tacserver>
config match
edit 1
set server-name <server>
set group-name <group>
end
end
end
end
Example Configuration
The following is an example configuration of a TACACS user account, with the CLI syntax shown to create it:
1. Configuring a TACACS user account for login authentication:
config user tacacs+
edit tacserver
set authen-type ascii
set authorization enable
52
FortiSwitchOS-3.2.0