Technical data
RackSwitch G8000 ISCLI Reference
108
Chapter 4: Configuration Commands BMD00128, September 2009
Table 4-6 TACACS+ Server Commands
Command Syntax and Usage
[no] tacacs-server primary-host <IP address>
Defines the primary TACACS+ server address.
Command mode: Global configuration
[no] tacacs-server secondary-host <IP address>
Defines the secondary TACACS+ server address.
Command mode: Global configuration
[no] tacacs-server primary-host <IP address> key <1-32 characters>
Sets the primary-host key. This is the primary shared secret between the switch and the TACACS+
server(s).
Command mode: Global configuration
[no] tacacs-server secondary-host <IP address> key <1-32 characters>
Sets the primary-host key. This is the secondary shared secret between the switch and the
TACACS+ server(s).
Command mode: Global configuration
tacacs-server port <1-65000>
Sets the number of the TCP port to be configured, between 1 and 65000. The default is 49.
Command mode: Global configuration
tacacs-server retransmit <1-3>
Sets the number of failed authentication requests before switching to a different TACACS+ server.
The default value is three requests.
Command mode: Global configuration
tacacs-server timeout <4-15>
Sets the amount of time, in seconds, before a TACACS+ server authentication attempt is consid-
ered to have failed. The default value is five seconds.
Command mode: Global configuration
tacacs-server user-mapping {<0-15> user|oper|admin}
Maps a TACACS+ authorization level to a switch user level. Enter a TACACS+ authorization
level (0-15), followed by the corresponding switch user level.
Command mode: Global configuration
[no] tacacs-server privilege-mapping
Enables or disables TACACS+ privilege mapping.
Command mode: Global configuration