Send feedback to nx5000-docfeedback@cisco.com
1-9
Cisco Nexus 5000 Series Switch CLI Software Configuration Guide
OL-16597-01
Chapter 1 Configuring TACACS+
Configuring TACACS+
The following example shows how to configure a TACACS+ server group:
switch# configure terminal
switch(config)# aaa group server tacacs+ TacServer
switch(config-tacacs+)# server 10.10.2.2
switch(config-tacacs+)# deadtime 30
switch(config-tacacs+)# exit
switch(config)# show tacacs-server groups
switch(config)# copy running-config startup-config
Specifying a TACACS+ Server at Login
You can configure the switch to allow the user to specify which TACACS+ server to send the authenticate
request by enabling the directed-request option. By default, a Nexus 5000 Series switch forwards an
authentication request based on the default AAA authentication method. If you enable this option, the
user can log in as username@hostname, where hostname is the name of a configured RADIUS server.
Note User specified logins are only supported for Telnet sessions.
To specify a TACACS+ server at login, perform this task:
Step 5
switch(config-tacacs+)# exit
Exits configuration mode.
Step 6
switch(config)# show tacacs-server
groups
(Optional) Displays the TACACS+ server group
configuration.
Step 7
switch(config)# copy running-config
startup-config
(Optional) Copies the running configuration to the
startup configuration.
Command Purpose
Command Purpose
Step 1
switch# configure terminal
Enters configuration mode.
Step 2
switch(config)# tacacs-server
directed-request
Allows users to specify a TACACS+ server to send the
authentication request when logging in. The default is
disabled.
Step 3
switch(config)# exit
Exits configuration mode.
Step 4
switch# show tacacs-server
directed-request
(Optional) Displays the TACACS+ directed request
configuration.
Step 5
switch# copy running-config
startup-config
(Optional) Copies the running configuration to the
startup configuration.
To Next Page
Loading...
