Ruijie RG-S2900G-E Series

To Next Page

To Previous Page

Configuration Guide TACACS+ Configuration

 Use aaa new-mode to enable AAA. AAA must be enabled before using

TACACS+; for the information how to enable aaa new-mode, please refer to

AAA Overview.

 Use tacacs-server host to configure one or multiple tacacs+ servers.

 Use tacacs-server key to specify server and NAS shared key.

 Use tacacs-server timeout to specify timeout time waiting for the server reply;

 If you need to authenticate, use aaa authentication to define using TACACS+

identity authentication method list. For the detailed information, please refer to

authentication configuration.

 If you need to authorize, use aaa authorization to define using TACACS+

authorization method list. For the detailed information, please refer to

authorization configuration.

 If you need to account, use aaa accounting to define using TACACS+

accounting method list. For the detailed information, please refer to accounting

configuration.

 You shall use the defined authentication list in the specified line, or you use the

list by default.

Configuring TACACS+ Protocol Parameter

You need to ensure that the network communication of TACACS+ server runs well

before configuring TACACS+ on the network device. Use the following commands to

configure TACACS+ protocol parameters:

Command

Function

configure terminal

Enter the global configuration mode.

aaa group server tacacs+

group-name

Configure TACACS+ group server, dividing different

TACACS+ server into different groups.

server ip-address

Configure the server addresses in TACACS+ group

server.

Ruijie RG-S2900G-E Series - Page 496