OS10 Enterprise Edition User Guide Release 10.4.1.0

PDF

tacacs-server host

Configures a TACACS+ server and the key used to authenticate the switch on the server.

Syntax
tacacs-server host { hostname | ip-address} key {0 authentication-key | 9 authentication-key | authentication-key} [auth-port port-number]
Parameters
  • hostname — Enter the host name of the TACACS+ server.
  • ip-address — Enter the IPv4 (A.B.C.D) or IPv6 (x:x:x:x::x) address of the TACACS+ server.
  • key 0 authentication-key — Enter an authentication key in plain text (up to 42 characters).
  • key 9 authentication-key — Enter an authentication key in encrypted format (up to 128 characters).
  • authentication-key — Enter an authentication in plain text (up to 42 characters). It is not necessary to enter 0 before the key.
  • key authentication-key — Enter a text string for the encryption key used to authenticate the switch on the TACACS+ server (up to 42 characters).
Default
Not configured
Command Mode
CONFIGURATION
Usage Information
The authentication key must match the key configured on the TACACS+ server. You cannot enter spaces in the key. The show running-configuration output displays both unencrypted and encrypted keys in encrypted format. Configure the global timeout allowed for authentication requests on TACACS+ servers by using the tacacs-server timeout command. By default, OS10 times out an authentication attempt on a TACACS+ server after five seconds. The no version of this command removes a TACACS+ server configuration.
Example
OS10(config)# tacacs-server host 1.5.6.4 key secret1 
Supported Releases
10.4.0E(R2) or later

Rate this content

Accurate
Useful
Easy to understand
Was this article helpful?
0/3000 characters
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please provide ratings (1-5 stars).
  Please select whether the article was helpful or not.
  Comments cannot contain these special characters: <>()\