You can configure TACACS authentication on your IBM
QRadar system.
Procedure
-
On the Admin tab, click Authentication.
- Click Authentication Module Settings.
-
From the Authentication Module list, select TACACS
Authentication.
-
Configure the parameters:
-
In the TACACS Server field,
type the host name or IP address of the TACACS server.
-
In the TACACS Port field, type
the port of the TACACS server.
-
From the Authentication Type list
box, select the type of authentication you want to perform.
Choose
from the following options:
| Option |
Description |
| ASCII |
American Standard Code for Information Interchange (ASCII) sends the user name and password
in clear text. |
| PAP |
Password Authentication Protocol (PAP) sends clear text between the user and the server.
PAP is the default authentication type. |
| CHAP |
Challenge Handshake Authentication Protocol (CHAP) establishes
a Point-to-Point Protocol (PPP) connection between the user and the
server. |
| MSCHAP |
Microsoft Challenge Handshake Authentication Protocol (MSCHAP) authenticates remote Windows workstations. |
-
In the Shared Secret field,
type the shared secret that QRadar uses
to encrypt TACACS passwords for transmission to the TACACS server.
-
Click Save Authentication Module.
What to do next
For TACACS user authentication, you must create a local QRadar user account that is the
same as the TACACS account on the authentication server.