Dell PowerConnect B-RX - Configuring Authentication-Method Lists for TACACS; And TACACS

1458 pages

To Next Page

To Next Page

To Previous Page

To Previous Page

Loading...

90 BigIron RX Series Configuration Guide

53-1002253-01

Configuring TACACS and TACACS+ security

4

When you display the configuration of the device, the TACACS+ keys are encrypted.

BigIron RX(config)# tacacs-server key 1 abc

BigIron RX(config)# write terminal

...

tacacs-server host 1.2.3.5 auth-port 49

tacacs key 1 $!2d

NOTE

Encryption of the TACACS+ keys is done by default. The 0 parameter disables encryption. The 1

parameter is not required; it is provided for backwards compatibility.

Setting the retransmission limit

The retransmit parameter specifies how many times the device will resend an authentication

request when the TACACS and TACACS+ server does not respond. The retransmit limit can be from

1 – 5 times. The default is 3 times.

To set the TACACS and TACACS+ retransmit limit, enter the following command.

BigIron RX(config)# tacacs-server retransmit 5

Syntax: tacacs-server retransmit <number>

Setting the dead time parameter

The dead-time parameter specifies how long the device waits for the primary authentication server

to reply before deciding the server is dead and trying to authenticate using the next server. The

dead-time value can be from 1 – 5 seconds. The default is 3 seconds.

To set the TACACS and TACACS+ dead-time value, enter the following command.

BigIron RX(config)# tacacs-server dead-time 5

Syntax: tacacs-server dead-time <number>

Setting the timeout parameter

The timeout parameter specifies how many seconds the Brocade device waits for a response from

the TACACS and TACACS+ server before either retrying the authentication request, or determining

that the TACACS and TACACS+ server is unavailable and moving on to the next authentication

method in the authentication-method list. The timeout can be from 1 – 15 seconds. The default is

3 seconds.

BigIron RX(config)# tacacs-server timeout 5

Syntax: tacacs-server timeout <number>

Configuring authentication-method lists for TACACS

and TACACS+

You can use TACACS and TACACS+ to authenticate Telnet/SSH access and access to Privileged

EXEC level and CONFIG levels of the CLI. When configuring TACACS and TACACS+ authentication,

you create authentication-method lists specifically for these access methods, specifying TACACS

and TACACS+ as the primary authentication method.

Table of Contents

Other manuals for Dell PowerConnect B-RX

Getting Started Guide32 pages

Related product manuals

Preview: Dell PowerConnect B-FCXs

Dell PowerConnect B-FCXs

Preview: Dell PowerConnect 6224

Dell PowerConnect 6224

Dell PowerConnect 6248

Preview: Dell PowerConnect 2216

Dell PowerConnect 2216

Preview: Dell PowerConnect 5424

Dell PowerConnect 5424

Preview: Dell PowerConnect 3324

Dell PowerConnect 3324

Preview: Dell PowerConnect 3524

Dell PowerConnect 3524

Preview: Dell PowerConnect 8024

Dell PowerConnect 8024

Dell PowerConnect 2824

Preview: Dell PowerConnect 5324

Dell PowerConnect 5324

Preview: Dell PowerConnect 3548

Dell PowerConnect 3548