EasyManua.ls Logo

Cisco Nexus 9000 Series - Configuring the Shared Secret for RADIUS or TACACS

Cisco Nexus 9000 Series
562 pages
To Next Page IconTo Next Page
To Next Page IconTo Next Page
To Previous Page IconTo Previous Page
To Previous Page IconTo Previous Page
Loading...
PurposeCommand or Action
Note: Choosing password key in the same line while
configuring user account, password will not be
hidden.
Copies the running configuration to the startup
configuration.
(Optional) copy running-config startup-config
Example:
Step 3
switch(config)# copy running-config startup-config
Configuring the Shared Secret for RADIUS or TACACS+
The shared secret that you configure for remote authentication and accounting between the switch and the
RADIUS or TACACS+ server should be hidden because it is sensitive information. You can use a separate
command to generate an encrypted shared secret for the radius-server [host] key and tacacs-server [host]
key commands. The SHA256 hashing method is used to store the encrypted shared secret.
SUMMARY STEPS
1. configure terminal
2. generate type7_encrypted_secret
3. (Optional) copy running-config startup-config
DETAILED STEPS
PurposeCommand or Action
Enters global configuration mode.configure terminal
Example:
Step 1
switch# configure terminal
Configures the RADIUS or TACACS+ shared secret with
key type 7. You are prompted to enter the shared secret in
generate type7_encrypted_secret
Example:
Step 2
plain text twice. The secret is hidden as you enter it. Then
an encrypted version of the secret appears.
switch(config)# generate type7_encrypted_secret
Type-7 (Vigenere) Encryption,
Use this encrypted secret to configure radius and
You can generate the encrypted equivalent of a
plain-text secret separately and configure the
encrypted shared secret later using the
radius-server [host] key and tacacs-server
[host] key commands.
Note
tacacs shared secret with key type 7.
Copy complete secret with double quotes.
Enter plain text secret:
Confirm plain text secret:
Type 7 Encrypted secret is : "fewhg"
Copies the running configuration to the startup
configuration.
(Optional) copy running-config startup-config
Example:
Step 3
switch(config)# copy running-config startup-config
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
33
Configuring AAA
Configuring the Shared Secret for RADIUS or TACACS+

Table of Contents

Other manuals for Cisco Nexus 9000 Series

Preview: Manual
Manual30 pages
Preview: Troubleshooting Guide
Troubleshooting Guide126 pages
Preview: Hardware Installation Guide
Hardware Installation Guide74 pages
Preview: Quick Start Configuration Guide
Quick Start Configuration Guide6 pages
Preview: Installation
Installation12 pages
Preview: Installing
Installing8 pages

Related product manuals