Send documentation comments to mdsfeedback-doc@cisco.com
41-16
Cisco MDS 9000 Family Fabric Manager Configuration Guide
OL-17256-03, Cisco MDS NX-OS Release 4.x
Chapter 41 Configuring RADIUS and TACACS+
Configuring TACACS+ Server Monitoring Parameters
Step 4 Click the Apply Changes icon to save the changes.
About TACACS+ Servers
By default, the TACACS+ feature is disabled in all switches in the Cisco MDS 9000 Family. Fabric
Manager or Device Manager enables the TACACS+ feature automatically when you configure a
TACACS+ server.
If a secret key is not configured for a configured server, a warning message is issued if a global key is
not configured. If a server key is not configured, the global key (if configured) is used for that server.
Note Prior to Cisco MDS SAN-OS Release 2.1(2), you can use the dollar sign ($) in the key but the key must
be enclosed in double quotes, for example “k$”. The percent sign (%) is not allowed. In Cisco MDS
SAN-OS Release 2.1(2) and later, you can use the dollar sign ($) without double quotes and the percent
sign (%) in global secret keys.
You can configure global values for the secret key for all TACACS+ servers.
Note If secret keys are configured for individual servers, those keys override the globally configured key.
Configuring a TACACS+ Server
To configure a TACACS+ server and all its options using Fabric Manager, follow these steps:
Step 1 Expand Switches > Security > AAA, and then select TACACS+.
You see the TACACS+ configuration in the Information pane.
Step 2 Choose the Servers tab.
You see any existing TACACS+ servers.
Step 3 Click Create Row to add a new TACACS+ server.
You see the Create TACACS+ Server dialog box as shown in Figure 41-5.
To Next Page
Loading...
Need help?
General
