10 Configuring Security and Access572 Voyager Reference GuideNoteThe maximum tries value includes the first attempt. For example, a valueof 3 means the client will make 2 additional attempts to contact theRADIUS server after the first attempt.14. Click A PPLY, and then click SAVE to make your changes permanent.NoteRepeat steps 1 to 14 to configure additional RADIUS authenticationprofiles. You must configure a RADIUS Authentication server for eachprofile even if you associate the new profile with a server that youpreviously configured for an existing RADIUS authentication profile.NoteRepeat steps 8 to 14 of this procedure to configure additional AAARADIUS Authentication Servers only.Configuring TACACS+TACACS+ is an authentication mechanism by which a remote server that isnot part of IPSO authenticates users (checks passwords) on behalf of the IPSOsystem. TACACS+ encrypts transmitted passwords and other data forsecurity.In the IPSO 3.6 release, TACACS+ is supported for authentication only, andnot for accounting. Challenge/response authentication, such as S/Key, overTACACS+ is not supported by IPSO at this time.TACACS+ support may be configured separately for various services. TheVoyager service is one of those for which TACACS+ is supported and isconfigured as the “httpd” service. When TACACS+ is configured for use witha service, IPSO contacts the TACACS+ server each time it needs to check auser password. For the Voyager service this occurs for each HTTP request
