PurposeCommand or Action
(Optional)
Copies the running configuration to the startup
configuration.
switch# copy running-config
startup-config
Step 4
Configuring TACACS+ Server Hosts
To access a remote TACACS+ server, you must configure the IPv4 or IPv6 address or the hostname for the
TACACS+ server on the Cisco Nexus device. All TACACS+ server hosts are added to the default TACACS+
server group.You can configure up to 64 TACACS+ servers.
If a preshared key is not configured for a configured TACACS+ server, a warning message is issued if a global
key is not configured. If a TACACS+ server key is not configured, the global key (if configured) is used for
that server.
(See Configuring TACACS+ Global Preshared Keys and Configuring TACACS+ Server Preshared Keys
sections for more details.)
Before you configure TACACS+ server hosts, you should do the following:
•
Enable TACACS+. See Enabling TACACS+ , on page 48 for more information.
•
Obtain the IPv4 or IPv6 addresses or the hostnames for the remote TACACS+ servers.
Procedure
PurposeCommand or Action
Enters global configuration mode.switch# configure terminal
Step 1
Specifies the IPv4 or IPv6 address or hostname
for a TACACS+ server.
switch(config)# tacacs-server host
{ipv4-address | ipv6-address | host-name}
Step 2
Specifies the IPv4 address or hostname for a
TACACS+ server.
switch(config)# tacacs-server host
{ipv4-address | host-name}
Step 3
Exits configuration mode.switch(config)# exit
Step 4
(Optional)
Displays the TACACS+ server configuration.
switch# show tacacs-server
Step 5
(Optional)
Copies the running configuration to the startup
configuration.
switch# copy running-config
startup-config
Step 6
You can delete a TACACS+ server host from a server group.
Cisco Nexus 3600 NX-OS Security Configuration Guide, Release 7.x
49
Configuring TACACS+
TACACS+ Server Configuration Process
To Next Page
Loading...
