Small Office Remote Access Switch 175
C
ONFIGURING
N
ETWORK
L
OGIN
I
NFORMATION
Login Configuration Specific to TACACS Server
netlogin change
Allows you to change the current network login configuration data. After entering the
netlogin change
command, you will be prompted for the type of login configuration
information you want to change. The prompt will resemble the CFGEDIT screen in which this
information was originally configured. You may change: user level security general
configuration, login banners, login configuration specific to RADIUS, and login configuration
specific to TACACS.
L
OGIN
C
ONFIGURATION
S
PECIFIC
TO
TACACS S
ERVER
B
ACKGROUND
I
NFORMATION
L
OGIN
E
LEMENTS
S
PECIFIC
TO
TACACS
There are login configuration parameters specific to TACACS. These include the specification of
prompt order, a password control character, and specification of messages for TACACS return
codes.
The prompt order specified on the system must match the prompt order specified on the TACACS
server. The default order is:
First prompt: LOGIN ID PROMPT (fixed)
Second prompt: DYNAMIC PASSWORD PROMPT
Third prompt: USER PASSWORD PROMPT
If you need to change this order, you may specify this order of prompts in the login process.
The password control character is a key sequence you specify to switch between the login mode
and the change password mode. In order to enable this feature for the general user, you need to
configure this password control character.
TACACS may provide return code messages upon user login. You may customize these messages
through CFGEDIT. The default messages are as follows:
If the login process was successful, but the user password is about to expire, one of the following
messages is displayed:
•
Password about to expire
•
Password expiration imminent
If the login process is unsuccessful, one of the following messages is displayed:
•
Login invalid
•
Please change PIN
•
User/Password invalid