Add Group configure new device group inside tacacs gui

  1. Homepage
  2. Documentation
  3. Tacacs Devices
  4. Device Groups
  5. Add Group

Tacacs Devices. Add New Device Group

Section Content

Add New Device Group Tabs

General Tab

General Tab

Table Fields Overview
Feild Description

it should be unique, but you can change it later

 (Required!) The unique name of device group. Also you can set “Group as Default” and everytime when you will create new device that group will be selected be default.
Pre-Shared Key that used between tacacs server and the device (NAS). All members (devices) of that group will use it if they don’t have your own pre-configured key.
Default enable password. If user does not have pre-configured enable password, that password will be used. The enable password can be stored in clear text or as MD5 hash. To store password as a hash, type your password, choose MD5 (Type of storing) and don’t forget to set “Encrypt the enable password (hashing), uncheck it if you put hash”, else the server will think that you put the hash instead of clear text and just save it. All members (devices) of that group will use it if they don’t have your own pre-configured enable password.

Messages Tab

Message Tab

The tacacs daemon allows for various banners to be diplayed to the user. All members (devices) of that group will use these messages if they don’t have your own pre-configured messages.

Test Welcome	### Welcome banner
Password:
Password incorrect.
Failed Auth! Get out!	### Failed Auth banner
Test Welcome	### Welcome banner
Password:
Test MOTD	### MOTD banner
Switch#

More info about special characters you can find here.

Access Tab

Access Tab

Table Fields Overview
Field Description

select ACL

 Here you can set pre-configured tacacs Access Control List (ACL), to restrict access for specific ip addresses. All members (devices) of that group will use it if they don’t have your own pre-configured ACL. How to add new tacacs ACL?

select default user group, for users without any group membership this directive may be used to assign one

 Here you can define default tacacs user group. If user doesn’t member of any group that group will be applied. All members (devices) of that group will use it if they don’t have your own pre-configured default user group. How to define new tacacs user group?

terminate a connection to this NAS after an idle period of at least s seconds. If it is 0 or empty, global param will be used

 Terminate a connection to this new device (NAS) after an idle period of at least seconds. Defaults to the global option. All members (devices) of that group will use it if they don’t have your own pre-configured timeout.

Manual Tab

Manual Tab

Here you can define manual settings for new device group. More info you can find here.

Don't Forget to Apply the configuration!

Changes will take effect only after configuration apply!

Author: Alexey Mochalin; Created at: 2018-11-01 22:30:32; Updated at: 2018-11-07 14:43:53