Task 3: Configuring AuthenticationIncoming FTP connections to HQ-PIX are authenticated using the Terminal Access Controller Access Control System Plus (TACACS+) server located on the internal network. To use a TACACS+ server for authentication, you must first identify the IP address of the TACACS+ server and then indicate which connections will use the TACACS+ server. This configuration requires the following two steps:
Example 20-5 shows the TACACS+ configuration. Example 20-5. TACACS+ Configurationaaa-server TACACS+ (inside) host 10.10.10.7 tacpass aaa authentication include ftp inside 0.0.0.0 0.0.0.0 TACACS+ |