Technical data
RackSwitch G8124 Command Reference
114
Chapter 4: Configuration Commands BMD00076, January 2009
Table 4-6 TACACS+ Server Commands
Command Syntax and Usage
[no] tacacs-server primary-host <IP address>
Defines the primary TACACS+ server address.
Command mode: Global configuration
[no] tacacs-server secondary-host <IP address>
Defines the secondary TACACS+ server address.
Command mode: Global configuration
[no] tacacs-server primary-host <IP address> key <1-32 characters>
Sets the primary-host key. This is the primary shared secret between the switch and the TACACS+
server(s).
Command mode: Global configuration
[no] tacacs-server secondary-host <IP address> key <1-32 characters>
Sets the primary-host key. This is the secondary shared secret between the switch and the
TACACS+ server(s).
Command mode: Global configuration
tacacs-server port <1-65000>
Sets the number of the TCP port to be configured, between 1 and 65000. The default is 49.
Command mode: Global configuration
[no] tacacs-server privilege-mapping
Enables TACACS+ privilege mapping.
Command mode: Global configuration
tacacs-server retransmit <1-3>
Sets the number of failed authentication requests before switching to a different TACACS+ server.
The default value is three requests.
Command mode: Global configuration
tacacs-server timeout <4-15>
Sets the amount of time, in seconds, before a TACACS+ server authentication attempt is consid-
ered to have failed. The default value is five seconds.
Command mode: Global configuration
[no] tacacs-server secure-backdoor
Enables or disables TACACS+ secure back door access through Telnet/SSH only when the
TACACS+ servers cannot be reached. This feature is recommended to permit access to the switch
when the TACACS+ servers are not available.
The default setting is enabled.
Command mode: Global configuration