Alcatel-Lucent AOS-W 6.5.3.x

To Next Page

To Previous Page

195| Authentication Servers AOS-W 6.5.3.x| User Guide

global TACACS configuration. If neither the global or per-server source interface in the TACACS server is

configured, then routable interface is chosen for TACACS server interface for communication. Both IPv4 and

IPv6 are supported while configuring source interface IP addresses.

If there is mismatch in the host IP and source interface IP. For example if the host is IPv6 and source interface

is IPv4 or vice-versa in per-server configuration, then the connection doesn’t succeed.

Only VLAN address is allowed.

Changes to host address are allowed only if:

1. Source interface is not configured.

2. Source interface is of same type as the host IP address.

All other combinations require the use of the no command to clear out the host IP and/or source interface for

that particular TACACS server.

Using the WebUI

Follow the steps below to configure per-server TACACS source interface:

1. Navigate to the Configuration > Security > Authentication > Servers page.

2. Select TACACS Server to display the TACACS Server List.

3. Select a TACACS server to enter the source interface details.

4. Enter values for the vlanid/ipv6addr.

5. Click Apply >Save Configuration.

Follow the steps below to configure global TACACS setup:

1. Navigate to the Configuration > Security > Authentication > Advanced page.

2. In the TACACS Setup field select a value for the vlanid from the Source Address v4 drop- down list to

configure source interface IPv4 address.

3. Enter values for the vlanid and IPv6 in the Source Address v6 field to configure source interface IPv6

address.

4. Click Apply > Save Configuration.

The configuration does not take effect until you perform this step.

Using the CLI

The following commands configure the global TACACS source interface on IPv4 and IPv6 respectively:

(host) (config) #ip tacacs source-interface vlan <vlan number>

(host) (config) ##ipv6 tacacs source-interface vlan <vlan id> <ip6addr>

The following commands configure per-server TACACS source interface on IPv4 and IPv6 respectively:

(host) (TACACS Server <name>) # source-interface vlan <vlan id>

(host) (TACACS Server <name>) # source-interface vlan <vlan id> ip6addr <ip6addr>

(host) (TACACS Server "<name>") #source-interface vlan

The following commands delete the global TACACS source interface on IPv4 and IPv6 respectively:

(host) (config)#no ip tacacs source-interface vlan <vlan id>

(host) (config)#no ipv6 tacacs source-interface vlan <vlan id> <ip6addr>

The following command deletes per-server TACACS source interface on IPv4:

(host) (TACACS Server <name>) #no source-interface vlan <vlanid>

Alcatel-Lucent AOS-W 6.5.3.x - Page 195