Chapter 7
| Authentication Commands
TACACS+ Client
– 221 –
RADIUS Server Group:
Group Name Member Index
------------------------- -------------
radius 1
Console#
TACACS+ Client
Terminal Access Controller Access Control System (TACACS+) is a logon
authentication protocol that uses software running on a central server to control
access to TACACS-aware devices on the network. An authentication server contains
a database of multiple user name/password pairs with associated privilege levels
for each user or group that require management access to a switch.
tacacs-server host This command specifies the TACACS+ server and other optional parameters. Use
the no form to remove the server, or to restore the default values.
Syntax
tacacs-server index host host-ip-address [key key] [port port-number]
[retransmit retransmit] [timeout timeout]
no tacacs-server index
index - The index for this server. (Range: 1)
host-ip-address - IP address of a TACACS+ server.
key - Encryption key used to authenticate logon access for the client.
Enclose any string containing blank spaces in double quotes. (Maximum
length: 48 characters)
port-number - TACACS+ server TCP port used for authentication messages.
(Range: 1-65535)
retransmit - Number of times the switch will try to authenticate logon
access via the TACACS+ server. (Range: 1-30)
timeout - Number of seconds the switch waits for a reply before resending
a request. (Range: 1-540)
Table 40: TACACS+ Client Commands
Command Function Mode
tacacs-server host Specifies the TACACS+ server and optional parameters GC
tacacs-server key Sets the TACACS+ encryption key GC
tacacs-server port Specifies the TACACS+ server network port GC
tacacs-server retransmit Sets the number of retries GC
tacacs-server timeout Sets the interval between sending authentication requests GC
show tacacs-server Shows the current TACACS+ settings GC
To Next Page
Loading...
Need help?
General