Specifications

ManualsBrandsCisco ManualsComputer equipment5428 - SN Router

721

722

723

724

725

726

727

728

729

730

12-547

Cisco SN 5428-2 Storage Router Software Configuration Guide

78-15471-01

Chapter 12 Command Line Interface Reference

tacacs-server host

Note Verification of IP addresses in a server group occurs only at runtime. If a TACACS+ server group

contains an IP address that is not defined as a TACACS+ server, the authentication process generates

error messages and the IP address is skipped. This could cause unexpected authentication failures.

Examples The following example specifies the server with IP address 172.29.39.46 as the TACACS+ server and

uses the default port for authentication:

[SN5428-2A]# tacacs-server host 172.29.39.46

The following example specifies port 52 as the destination port for authentication requests on the

TACACS+ server 172.29.39.46:

[SN5428-2A]# tacacs-server host 172.29.39.46 auth-port 52

The following example specifies the server with IP address 172.29.39.46 as the TACACS server, uses

ports 52 as the authorization port, sets the timeout value to 6, and sets tac123 as the encryption key,

matching the key on the TACACS+ server:

[SN5428-2A]# tacacs-server host 172.29.39.46 auth-port 52 timeout 6 key tac123

Related Commands Command Description

aaa authentication

enable

Configure AAA authentication services for Administrator mode access to

the SN 5428-2 Storage Router via the CLI enable command.

aaa authentication

iscsi

Configure the AAA authentication services to be used for iSCSI

authentication.

aaa authentication

Configure AAA authentication services for Monitor mode access to the

SN 5428-2 Storage Router via the CLI.

aaa group server

tacacs+

Create a named group of TACACS+ servers for AAA authentication

services.

aaa test authentication Enable testing of the specified AAA authentication list.

debug aaa Enable debugging for the AAA authentication services.

ip tacacs

sourceinterface

Specify a single network interface to be used as the source IP address for all

outgoing AAA authentication requests to TACACS+ servers.

radius-server host Configure remote RADIUS servers for AAA authentication services.

restore aaa Restore AAA authentication services from the named configuration file.

save aaa Save the current AAA configuration information.

scsirouter

authentication

Enable iSCSI authentication for the named SCSI routing instance.

show aaa Display AAA configuration information.

tacacs-server key Sets the global authentication and encryption key for all TACACS+

communications between the storage router and the TACACS+ daemon.

tacacs-server timeout Sets the interval the storage router waits for a TACACS+ server to reply.