Specifications
12-18
Cisco SN 5428-2 Storage Router Software Configuration Guide
78-15471-01
Chapter 12 Command Line Interface Reference
aaa group server tacacs+
aaa group server tacacs+
To create a named group of TACACS+ servers to be used for AAA authentication, use the
aaa group server tacacs+ command. To disable an existing group of TACACS+ servers, use the no form
of this command.
aaa group server tacacs+ name
no aaa group server tacacs+ name
Syntax Description
Defaults None. All configured TACACS+ servers belong to the group named tacacs+.
Command Modes Administrator.
Command History
Usage Guidelines Use this command to create a subset of TACACS+ servers to be used for AAA authentication. The named
group can then be added to a AAA authentication methods list, allowing the specified set of TACACS+
servers to be used for authentication. After creating the named group, use the
aaa group server tacacs+ server command to add a TACACS+ server to the group.
Use the tacacs-server host command to configure a TACACS+ server to be used by the storage router
for AAA authentication.
Group names must be unique across the storage router; you cannot have a group of TACACS+ servers
named labauth and a group of RADIUS servers named labauth. The default group name of tacacs+
includes all configured TACACS+ servers.
In a cluster environment, AAA management functions are handled by a single storage router. To
determine which storage router is performing AAA management functions, issue the show cluster
command. If you issue the aaa group server tacacs+ command from a storage router that is not
performing AAA management functions, the CLI displays an informational message with the name of
the node that is currently handling those functions.
Examples The following example creates a TACACS+ server group named region3:
[SN5428-2A]# aaa group server tacacs+ region3
name The name of the group of TACACS+ servers to be used for AAA
authentication. Enter a maximum of 31 characters.
Release Modification
3.2.1 This command was introduced.