Created on 09-28-2018 12:39 AM Edited on 02-02-2024 04:43 AM By Stephen_G
Description
Solution
Configuring Network Sentry to work in a TACACS environment.
1.) All switch models in Network Sentry have to be configured with a Super User and Password.
2.) The enable password has to be removed in all switch models in Network Sentry
3.) The switches have to be configured so that the Super User gets dropped into the enable mode without an enable password.
If global configuration is used then
1.) Fully test on one switch prior to doing mass implementation
2.) Do a database backup on Network Sentry prior to the change so that a restore of the database will restore all switches to the previous configuration.
3.) Use the global configuration to push Username Password changes.
4.) Have a back out script that can run on all hardware switches to reverse password configuration changes and TACACS configuration if needed.
The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.
Copyright 2024 Fortinet, Inc. All Rights Reserved.