TACACS+ Commands
OL-32830-01 Command Line Interface Reference Guide 998
51
• key
key-string
—(Optional) Specifies the authentication and encryption key
for all TACACS+ communications between the device and the TACACS+
server. This key must match the encryption used on the TACACS+ daemon.
To specify an empty string, enter "". (Length: 0-128 characters). If this
parameter is omitted, the globally-defined key (set in the tacacs-server key
command tacacs-server host source-interface command) will be used.
• key
encrypted-key-string
—(Optional) Same as key-string, but the key is in
encrypted format.
• priority
priority
—(Optional) Specifies the order in which the TACACS+
servers are used, where 0 is the highest priority. (Range: 0-65535)
Default Configuration
No TACACS+ host is specified.
The default port-number is 1812.
If timeout is not specified, the global value (set in the tacacs-server timeout
command) is used.
If key-string is not specified, the global value (set in the tacacs-server key
command) is used.
Command Mode
Global Configuration mode
User Guidelines
Multiple tacacs-server host commands can be used to specify multiple hosts.
Example
The following example specifies a TACACS+ host.
switchxxxxxx(config)#
tacacs-server host 172.16.1.1
51.2 tacacs-server host source-interface
To specify the source interface which IPv4 address will be used as the Source
IPv4 address for communication with IPv4 TACACS+ servers, use the
tacacs-server host source-interface Global Configuration mode command. To
restore the default configuration, use the no form of this command.
To Next Page
Loading...
Need help?
General