tacacs-server
This command provides support for communicating with a TACACS+ server through the device's WAN interface.
Syntax
tacacs-server timeout | source data source-address interface | source data vrf | source voip | port | obscured-key | host | key
|
Command |
Description |
|---|---|
|
timeout |
Defines how much time to wait (in seconds) for a TACACS+ response before failing the authentication. |
|
source data source-address interface |
Defines the source interface ID. |
|
source data vrf |
Defines the VRF name. |
|
host |
Specifies the address (IP address or FQDN) of the TACACS+ server. Note: Up to two TACACS+ servers may be defined. |
|
port |
Specifies the TCP port number for the TACACS+ service. |
|
key |
Specifies the shared secret between the TACACS+ server and the device. |
|
obscured-key |
Copies the TACACS+ shared secret from an existing configuration. |
|
Interface Type (ifname) |
Interface ID |
|
|---|---|---|
|
gigabitethernet |
GigabitEthernet interface slot and port (VLAN ID is optional) |
[SLOT/PORT.VLANID] |
|
cellular |
Cellular interface ID |
0/0 |
|
gre |
Tunnel GRE ID |
[1-255] |
|
ipip |
Tunnel IPIP ID |
[1-255] |
|
l2tp |
L2TP ID |
[0-99] |
|
pppoe |
PPPoE interface ID |
[1-3] |
|
pptp |
PPTP ID |
[0-99] |
|
vlan |
Vlan ID |
[1-3999] |
|
loopback |
Loopback ID |
[1-5] |
|
bvi |
Bridge interface |
[1-255] |
Default
By default, no TACACS+ servers are defined.
The default TCP port is 49.
The default timeout is 5 seconds.
The default key is “MSBR”.
Note
This command is applicable to Mediant MSBR devices.
Command Mode
Privileged User
Example
The example below configures a TACACS+ server.
(config-data)# tacacs-server host 192.168.1.55 (config-data)# tacacs-server key Rumble