Configuring a system for a TACACS+ authentication server
This section provides a sample configuration of a vRouter for a TACACS+ authentication server, as shown in the following figure.
The example shows how to define a TACACS+ authentication server at the 10.10.30.24 IP address. The system is to access the TACACS+ server by using a secret of vX87ssd9Z. Configuring the server address and the secret are the minimal configuration requirements. The port and timeout values can be changed, if required. The default port is 49 and the default timeout is 3 seconds.
To define this TACACS+ authentication server, perform the following steps in configuration mode. Run $ configure to enter the configuration mode.
Step | Command |
---|---|
Provide the location of the server and the secret to be used to access it. |
|
Commit the change. |
|
Save the configuration so that the changes persist after reboot. |
|
Show the contents of the system tacplus-server configuration node. |
|
Show the status of TACACS+. |
|