Send documentation comments to mdsfeedback-doc@cisco.com
17-9
Cisco MDS 9000 Family Troubleshooting Guide, Release 3.x
OL-9285-05
Chapter 17 Troubleshooting RADIUS and TACACS+
AAA Issues
Verifying RADIUS Server Groups Using Fabric Manager
To verify or change the RADIUS server groups using Fabric Manager, follow these steps:
Step 1 Choose Switches > Security > AAA and click Create Row to create a server group.
Step 2 Check the list of switches that you want to configure server groups on.
Step 3 Set the Server List field to a comma-separated list of RADIUS servers.
Step 4 Set the Deadtime field to configure the time that the switch waits before retesting a dead server. and click
Apply to save these changes.
Verifying RADIUS Server Groups Using the CLI
To verify or change the RADIUS server groups using the CLI, follow these steps:
Step 1 Use the show running-config command to view the RADIUS configuration for the server groups.
switch# show running-config | begin aaa
aaa group server radius RadiusGroup
server 10.1.1.1
server 10.2.3.4
aaa group server tacacs TacacsGroup
server 11.5.4.3
server 11.6.5.4
Step 2 Use the aaa group server radius command to configure the RADIUS servers that you want in this server
group.
Note CFS does not distribute AAA server groups. You must copy this configuration to all relevant
switches in the fabric.
Verifying TACACS+ Server Groups Using Fabric Manager
To verify or change the TACACS+ server groups using Fabric Manager, follow these steps:
Step 1 Choose Switches > Security > AAA and click Create Row to create a server group.
Step 2 Check the list of switches that you want to configure server groups on.
Step 3 Set the Server List field to a comma-separated list of TACACS+ servers.
Step 4 Set the Deadtime field to configure the time that the switch waits before retesting a dead server. and click
Apply to save these changes.
To Next Page
Loading...
Need help?
General