Set authentication – Allied Telesis AT-S60 User Manual

Chapter 27: TACACS+ and RADIUS Commands

292

SET AUTHENTICATION

Syntax

set authentication method=[tacacs|radius]
[secret=string] [timeout=integer]

Parameters

method

Specifies which protocol, TACACS+ or RADIUS, is to
be the active protocol on the switch.

secret

Specifies the global encryption key that is used by
the TACACS+ or RADIUS servers. If the servers use
different encryption keys, you can leave this
parameter blank and set individual encryption keys
with ADD TACACSSERVER on page 286 or ADD
RADIUSSERVER on page 285.

timeout

Specifies the maximum amount of times the switch
waits for a response from either an authentication
server before the switch assumes the server will not
respond. If the timeout expires and the server has
not responded, the switch queries the next server in
the list. Once the switch has exhausted the list of
servers, the switch defaults to the standard Manager
and Operator accounts. The default is 30 seconds.
The range is 1 to 300 seconds.

Description

Use this command to select the authentication protocol. Only one
authentication protocol can be active on the switch at a time. You may
specify a global encryption code and the maximum number of seconds
the switch waits for a response from an authenticator server.

Note

The encryption keys in TACACS+ are specific to TACACS+ and are
independent of the key set with the Encryption commands.

Examples

The following command selects TACACS+ as the authentication
protocol on the switch:

set authentication method=tacacs