The test parameters are distributed across switches. The test parameters are not distributed to any switch in
the fabric.
Note
Before you begin
Enable TACACS+.
Add one or more TACACS+ server hosts.
SUMMARY STEPS
1. configure terminal
2. tacacs-server host {ipv4-address | ipv6-address | hostname} test {idle-time minutes | password password
[idle-time minutes] | username name [password password [idle-time minutes]]}
3. tacacs-server dead-time minutes
4. exit
5. (Optional) show tacacs-server
6. (Optional) copy running-config startup-config
DETAILED STEPS
PurposeCommand or Action
Enters global configuration mode.configure terminal
Example:
Step 1
switch# configure terminal
switch(config)#
Specifies parameters for individual server monitoring. The
default username is test, and the default password is test.
tacacs-server host {ipv4-address | ipv6-address |
hostname} test {idle-time minutes | password password
Step 2
The default value for the idle timer is 0 minutes, and the
valid range is from 0 to 1440 minutes.
[idle-time minutes] | username name [password password
[idle-time minutes]]}
Example:
For periodic TACACS+ server monitoring, the
idle timer value must be greater than 0.
Note
switch(config)# tacacs-server host 10.10.1.1 test
username user1 password Ur2Gd2BH idle-time 3
Specifies the number of minutes before the Cisco NX-OS
device checks a TACACS+ server that was previously
tacacs-server dead-time minutes
Example:
Step 3
unresponsive. The default value is 0 minutes, and the valid
range is from 0 to 1440 minutes.
switch(config)# tacacs-server dead-time 5
Exits configuration mode.exit
Example:
Step 4
switch(config)# exit
switch#
Displays the TACACS+ server configuration.(Optional) show tacacs-server
Example:
Step 5
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
86
Configuring TACACS+
Configuring Periodic TACACS+ Server Monitoring on Individual Servers
To Next Page
Loading...
