Guidelines and Limitations for TACACS+
TACACS+ has the following configuration guidelines and limitations:
•
You can configure a maximum of 64 TACACS+ servers on the Cisco Nexus device.
Configuring TACACS+
TACACS+ Server Configuration Process
This section describes how to configure TACACS+ servers.
Procedure
Step 1
Enable TACACS+.
See Enabling TACACS+ , on page 48.
Step 2
Establish the TACACS+ server connections to the Cisco Nexus device.
Configuring TACACS+ Server Hosts, on page 49
Step 3
Configure the preshared secret keys for the TACACS+ servers.
Configuring TACACS+ Global Preshared Keys, on page 50
Step 4
If needed, configure TACACS+ server groups with subsets of the TACACS+ servers for AAA authentication
methods.
Configuring TACACS+ Server Groups, on page 51
Step 5
If needed, configure periodic TACACS+ server monitoring.
Configuring Periodic TACACS+ Server Monitoring, on page 54
Enabling TACACS+
Although by default, the TACACS+ feature is disabled on the Cisco Nexus device. You can enable the
TACACS+ feature to access the configuration and verification commands for authentication.
Procedure
PurposeCommand or Action
Enters global configuration mode.switch# configure terminal
Step 1
Enables TACACS+.switch(config)# feature tacacs+
Step 2
Exits configuration mode.switch(config)# exit
Step 3
Cisco Nexus 3600 NX-OS Security Configuration Guide, Release 7.x
48
Configuring TACACS+
Guidelines and Limitations for TACACS+
To Next Page
Loading...
