Procedure
PurposeCommand or Action
Enters global configuration mode.switch# configure terminal
Step 1
Exits configuration mode.switch(config)# exit
Step 2
(Optional)
Displays the TACACS+ server configuration.
switch# show tacacs-server
Step 3
(Optional)
Copies the running configuration to the startup
configuration.
switch# copy running-config
startup-config
Step 4
The following example shows how to configure TCP ports:
switch# configure terminal
switch(config)# tacacs-server host 10.10.1.1 port 2
switch(config)# exit
switch# show tacacs-server
switch# copy running-config startup-config
Configuring Periodic TACACS+ Server Monitoring
You can monitor the availability of TACACS+ servers. These parameters include the username and password
to use for the server and an idle timer. The idle timer specifies the interval in which a TACACS+ server
receives no requests before the Cisco Nexus device sends out a test packet.You can configure this option to
test servers periodically, or you can run a one-time only test.
To protect network security, we recommend that you use a username that is not the same as an existing
username in the TACACS+ database.
Note
The test idle timer specifies the interval in which a TACACS+ server receives no requests before the Cisco
Nexus device sends out a test packet.
The default idle timer value is 0 minutes. When the idle time interval is 0 minutes, periodic TACACS+
server monitoring is not performed.
Note
Procedure
PurposeCommand or Action
Enters global configuration mode.switch# configure terminal
Step 1
Specifies the number minutes before the Cisco Nexus
device checks a TACACS+ server that was previously
switch(config)# tacacs-server
dead-time minutes
Step 2
Cisco Nexus 3600 NX-OS Security Configuration Guide, Release 7.x
54
Configuring TACACS+
TACACS+ Server Configuration Process
To Next Page
Loading...
