DGS-6604 m server
CLI Reference Guide
541
server
Set up a server for different types of methods. Use the no form of this command
to delete a server.
server {tacacs | xtacacs} IP-ADDRESS [auth-port PORT-NUMBER] [timeout SECONDS]
[retransmit COUNT]
server tacacs+ IP-ADDRESS [auth-port PORT-NUMBER] {key KEY-STRING | no-encrypt}
server radius IP-ADDRESS [auth-port PORT-NUMBER] {key KEY-STRING | no-encrypt}
[timeout SECONDS] [retransmit COUNT]
no server {tacacs | xtacacs | tacacs+ | radius} IP-ADDRESS
Default radius auth-port PORT-NUMBER: 1812
tacacs/xtacacs/tacacs+ auth-port PORT-NUMBER: 49
timeout: 5 seconds
retransmit: 2
Command Mode aaa group server configuration
Usage Guideline Enable TACACS, XTACACS, TACACS+, or RADIUS authentication method for
login and enable access to the switch. The first created authentication method
will be the primary one. The maximum number of entries in the list is project
Syntax Description
tacacs Specifies tacacs authentication.
xtacacs Specifies xtacacs authentication.
tacacs+ Specifies tacacs+ authentication.
radius Specifies radius authentication.
IP-ADDRESS Specifies the IP address of the authentication sever.
auth-port
PORT-NUMBER
(Optional) Specifies theTCP or UDP destination port for authentication requests.
The port-number argument specifies the port number for authentication
requests.
key KEY-STRING The key for TACACS+ or RADIUS authentication. This argument is only present
for TACACS+ and RADIUS. The key can be from 1 to 32 characters. The syntax
is a general string that does not allow space.
no-encrypt No encryption for TACACS+ and RADIUS authentication. This argument is only
present for TACACS+ and RADIUS.
timeout SECONDS (Optional) The time in seconds for waiting server reply. The range of timeout is 1
- 255 seconds.
retransmit COUNT (Optional) Specifies the number of switch system re-send an authentication
request to the server when no response is received. The value is from 0 to 3, and
0 to disable the retransmit.
To Next Page
Loading...
