3 commands for tacacs, 1 tacacs-server authentication host – Accton Technology ES4626 User Manual
Page 118
118
Command Explanntion
Global Mode
tacacs-server authentication host
[primary]]
no tacacs-server authentication host
Configure the IP address and listen port
number of the TACACS+ authentication
server; the “no” form of this command
deletes the TACACS+ authentication
server
3) Configure the TACACS+ authentication timeout time
Command Explanation
Global Mode
tacacs-server timeout
no tacacs-server timeout
Configure the authentication timeout for
the TACACS+ server, the “no
tacacs-server timeout
” command
restores the default configuration
2.9.3 Commands for TACACS+
2.9.3.1 tacacs-server authentication host
Command: tacacs-server authentication host <ip-address> [port <port-number>]
[primary]
no tacacs-server authentication host <ip-address>
Function:
Configure the IP address and listening port number of the TACACS+ server;
the “no” form of this command deletes TACACS+ authentication server.
Parameter: <ip-address>
is the IPof the server;<port-number> is the listening port
number of the server,the valid range is 0~65535,amongst 0 indicates it will not be an
authentication server;primary indicates it’s a primary server.
Command Mode:
Global Mode
Default:
No TACACS+ authentication configured on the system by default
Usage Guide:
This command is for specifying the IP address and port number of the
TACACS+ server used on authenticating with the switch. The parameter port is for define
an authentication port number which must be in accordance with the authentication port
number of specified TACACS+ server which is 49 by default. This command can
configure several TACACS+ servers communicate with the switch. The configuration
sequence will be used as authentication server sequence, and in case primary is
configured on one TACACS+ server, the server will be the primary server.
Example:
Configure the TACACS+ authentication server address to 192.168.1.2
Switch(Config)#tacacs-server authentication host 192.168.1.2