HP Intelligent Management Center (IMC) is a modular, comprehensive resource management platform. With its extensive device support, IMC provides true end-to-end management for the entire network, and entire operation cycle. TACACS+ Authentication Manager (TAM) is an IMC module, which provides basic authentication, authorization and accounting functions for network device or IT users in order to assure the security of network device management. TAM, which utilizes the TACACS+ protocol, can assign device users different privileges, monitor login and command execution operations, and simplifies user management. TAM works with devices which support TACACS+ protocol.
Support device identification and authentication
Support multiple accesses including Telnet, SSH, FTP, etc. Support multiple identity verifications including ASCII, PAP, CHAP, etc. Support unified authentication with LDAP server, windows domain server, third-party LDAP-enabled email system, etc.
Flexible authorization policies
Group management of device users - different user groups can be assigned different authorization policies. Shell profiles and command sets assignment - assign device users different shell profiles and command sets based on scenarios such as user group, device area, device type, and access period.
Comprehensive user and log monitoring
Comprehensive user monitoring - administrators can monitor online users and even add malicious users into blacklist. User monitor and log monitor - TAM will record the authentication, authorization and audit logs. All logs can be exported for auditing purposes.
Centralized device user management
Provide group management for device users. Different user can be managed by different administrators. Provide batch operations to device users, including file loading, changing, add to blacklist, delete user, etc. Support synchronize LDAP user. LDAP synchronization policy can be self-defined. The device user information can be synchronized from LDAP system via manual or regular intervals.
Granular device control
Provide refined control on operator privileges, not only to assign the operator's operation limits, but provide controls on operator's adding/deleting/changing/checking to some function items. TAM device support is vendor agnostic. It supports devices that utilize TACACs+ protocol.