Send feedback to nx5000-docfeedback@cisco.com
1-7
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
OL-16597-01
Chapter 1 Configuring TACACS+
Configuring TACACS+
The following example shows how to configure global preshared keys:
switch# configure terminal
switch(config)# tacacs-server key 0 QsEfThUkO
switch(config)# exit
switch# show tacacs-server
switch# copy running-config startup-config
Configuring TACACS+ Server Preshared Keys
You can configure preshared keys for a TACACS+ server. A preshared key is a shared secret text string
between the Nexus 5000 Series switch and the TACACS+ server host.
To configure the TACACS+ preshared keys, perform this task:
Command Purpose
Step 1
switch# configure terminal
Enters configuration mode.
Step 2
switch(config)# tacacs-server key [0|7]
key-value
Specifies a preshared key for all TACACS+ servers.
You can specify a clear text (0) or encrypted (7)
preshared key. The default format is clear text. The
maximum length is 63 characters.
By default, no preshared key is configured.
Step 3
switch(config)# exit
Exits configuration mode.
Step 4
switch# show tacacs-server
(Optional) Displays the TACACS+ server
configuration.
Note The preshared keys are saved in encrypted
form in the running configuration. Use the
show running-config command to display the
encrypted preshared keys.
Step 5
switch# copy running-config
startup-config
(Optional) Copies the running configuration to the
startup configuration.
Command Purpose
Step 1
switch# configure terminal
Enters configuration mode.
Step 2
switch(config)# tacacs-server host
{ipv4-address|ipv6-address|host-name}
key [0|7] key-value
Specifies a preshared key for a specific TACACS+
server. You can specify a clear text (0) or encrypted (7)
preshared key. The default format is clear text. The
maximum length is 63 characters.
This preshared key is used instead of the global
preshared key.
To Next Page
Loading...
