Controlling webagent access when using TACACS+ authentication
Configuring the switch for TACACS+ authentication does not affect WebAgent access. To prevent unauthorized access through the WebAgent, do one or more of the following:
Configure local authentication (a manager user name and password and, optionally, an operator user name and password) on the switch.
Configure the switch Authorized IP manager feature to allow WebAgent access only from authorized management stations. (The Authorized IP manager feature does not interfere with TACACS+ operation.)
Disable WebAgent access to the switch by going to the System Information screen in the Menu interface and configuring the Web Agent Enabled parameter to No.