2-10
TACACS+ Authentication
Configuring TACACS+ on the Switch
Viewing the Switch’s Current Authentication
Configuration
This command lists the number of login attempts the switch allows in a single
login session, and the primary/secondary access methods configured for each
type of access.
Syntax: show authentication
This example shows the default authentication configuration.
Figure 2-2. Example Listing of the Switch’s Authentication Configuration
Viewing the Switch’s Current TACACS+ Configuration
This command lists the timeout period, encryption key, and the IP addresses
of the first-choice and backup TACACS+ servers the switch can contact.
Syntax: show tacacs
For example, if the switch was configured for a first-choice and two backup
TACACS+ server addresses, the default timeout period, and paris-1 for a
(global) encryption key, show tacacs would produce a listing similar to the
following:
Figure 2-3. Example of the Switch’s TACACS+ Configuration Listing
Configuration for login and enable access
to the switch through the switch console
port.
Configuration for login and enable access
to the switch through Telnet.
First-Choice
TACACS+ Server
Second-Choice
TACACS+ Server
Third-Choice
TACACS+ Server
!FishSecurity.book Page 10 Thursday, October 10, 2002 9:19 PM
To Next Page
Loading...
Need help?
General
