beautypg.com

Allied Telesis AlliedWare Plus Operating System Version 5.4.4C (x310-26FT,x310-26FP,x310-50FT,x310-50FP) User Manual

Page 1299

background image

TACACS+ Commands

Software Reference for x310 Series Switches

C613-50046-01 REV A

AlliedWare Plus

TM

Operating System - Version 5.4.4C

49.3

Usage

A TACACS+ server host cannot be configured multiple times like a RADIUS server.

As many as four TACACS+ servers can be configured and consulted for login
authentication, enable password authentication and accounting. The first server
configured is regarded as the primary server and if the primary server fails then the
backup servers are consulted in turn. A backup server is consulted if the primary server
fails, not if a login authentication attempt is rejected. The reasons a server would fail are:

it is not network reachable

it is not currently TACACS+ capable

it cannot communicate with the switch properly due to the switch and the server
having different secret keys

Examples

To add the server tac1.company.com as the TACACS+ server host, use the following
commands:

To set the secret key to secret on the TACACS+ server 192.168.1.1, use the following
commands:

To remove the TACACS+ server tac1.company.com, use the following commands:

Related Commands

aaa accounting commands
aaa authentication login
tacacs-server key
tacacs-server timeout
show tacacs+

awplus#

configure terminal

awplus(config)#

tacacs-server host tac1.company.com

awplus#

configure terminal

awplus(config)#

tacacs-server host 192.168.1.1 key secret

awplus#

configure terminal

awplus(config)#

no tacacs-server host tac1.company.com

See also other documents in the category Allied Telesis Computer hardware: