The following example shows how to configure a TACACS+ server group:
switch# configure terminal
switch(config)# aaa group server tacacs+ TacServer
switch(config-tacacs+)# server 10.10.2.2
switch(config-tacacs+)# deadtime 30
switch(config-tacacs+)# exit
switch(config)# show tacacs-server groups
switch(config)# copy running-config startup-config
Configuring the Global Source Interface for TACACS+ Server Groups
You can configure a global source interface for TACACS+ server groups to use when accessing TACACS+
servers. You can also configure a different source interface for a specific TACACS+ server group.
Procedure
PurposeCommand or Action
Enters global configuration mode.configure terminal
Step 1
Configures the global source interface for all
TACACS+ server groups configured on the
ip tacacs source-interface interface
Example:
switch(config)# ip tacacs
source-interface mgmt 0
Step 2
device. The source interface can be the
management or the VLAN interface.
Exits configuration mode.exit
Example:
switch(config)# exit
switch#
Step 3
(Optional)
Displays the TACACS+ server configuration
information.
show tacacs-server
Example:
switch# show tacacs-server
Step 4
(Optional)
Copies the running configuration to the startup
configuration.
copy running-config startup config
Example:
switch# copy running-config
startup-config
Step 5
Configuring the Global TACACS+ Timeout Interval
You can set a global timeout interval that the Cisco Nexus device waits for responses from all TACACS+
servers before declaring a timeout failure. The timeout interval determines how long the switch waits for
responses from TACACS+ servers before declaring a timeout failure.
Cisco Nexus 3600 NX-OS Security Configuration Guide, Release 7.x
52
Configuring TACACS+
TACACS+ Server Configuration Process
To Next Page
Loading...
