Sign In with your
Trend Micro Account
Need Help?
Need More Help?

Create a technical support case if you need further support.

Can I use multiple authentication methods on the SMS?

    • Updated:
    • 27 Jul 2017
    • Product/Version:
    • TippingPoint SMS All
    • TippingPoint Virtual SMS
    • Platform:
Summary
Authentication sources for the Security Management System (SMS)
Details
Public

The SMS supports five types of user authentication; Local, RADIUS, Active Directory (AD), TACACS+ and CAC. However, only one authentication method per SMS server is allowed at any one time. While only one authentication method is supported, SMS does allow the administrator the ability to designate users that must always be authenticated locally regardless the primary authentication source. 

Authentication Source

In the Admin>Authentication and Authorization>Authentication>Authentication Source area you can view the currently enabled authentication method.

Note 1: Using both RADIUS and Active Directory authentication on a single SMS instance is not supported.

Note 2: A typical best-practice recommendation is to have at least one SuperUser account that authenticates locally to ensure access for system troubleshooting.

Note 3: Designating RADIUS or Active Directory (AD) as an authentication source first requires that a RADIUS or AD server be configured and properly enabled for authentication in your network environment.

Note 4: The RADIUS and AD options will remain grayed out until properly configured in the Authentication Configuration screen.

Note 5: RADIUS authentication is supported on N-Platform and NX-platform devices running TOS v3.7.0 or later. If the device does not support RADIUS authentication, the RADIUS options are disabled. TACACS+ authentication is supported only on N-Platform and NX-platform devices running TOS v3.8.0 or later. If the device does not support TACACS+ authentication, this option is disabled.

How To: Edit the SMS Server Authentication Source

  1. Login to the SMS from a client.
  2. Select Admin>Authentication and Authorization>Authentication>Authentication Source from the Admin navigation menu.
  3. Click Edit in the Authentication Source area. The Authentication Source dialog box opens.
  4. Choose one of the four available selections:
    • Use Local Authentication
    • Use RADIUS Authentication
    • Use Active Directory Authentication
    • Use TACACS+ Authentication
    • Use CAC Authentication
  5. In the lower portion of the dialog, select user accounts that are only authenticated locally, even if a remote authentication server is selected as authentication source.
  6. Click OK.
Premium
Internal
Rating:
Category:
Configure
Solution Id:
TP000085491
Feedback
Did this article help you?

Thank you for your feedback!

To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.

If you need additional help, you may try to contact the support team. Contact Support


To help us improve the quality of this article, please leave your email here so we can clarify further your feedback, if neccessary:
We will not send you spam or share your email address.

*This form is automated system. General questions, technical, sales, and product-related issues submitted through this form will not be answered.