Installation guide
Configuring the Switch
3-64
3
Configuring Encryption Keys
The Encryption Key feature provides a central location for the management of all
RADIUS and TACACS+ server encryption keys.
Command Attributes
• RADIUS Settings
- Global – Provides globally applicable RADIUS encryption key settings.
- Server Index – Specifies one of five RADIUS servers for which an encryption
key may be configured.
- Secret Text String – Encryption key used to authenticate logon access for
client. Do not use blank spaces in the string. (Maximum length: 48 characters)
- Confirm Secret Text String – Re-type the string entered in the previous field to
ensure no errors were made. The switch will not change the encryption key if
these two fields do not match.
- Change – Clicking this button adds or modifies the selected encryption key.
• TACACS+ Settings
- Global – Provides globally applicable TACACS+ encryption key settings.
- Server Index – Specifies the index number of the TACACS+ server for which an
encryption key may be configured. The switch currently supports only one
TACACS+ server.
Console#configure
Console(config)#authentication login tacacs 4-98
Console(config)#tacacs-server 1 host 10.20.30.40 4-105
Console(config)#tacacs-server port 200 4-105
Console(config)#tacacs-server retransmit 5 4-106
Console(config)#tacacs-server timeout 10 4-107
Console(config)#tacacs-server key green 4-106
Console#show tacacs-server 4-108
Remote TACACS+ server configuration:
Global Settings:
Communication Key with TACACS+ Server:
Server Port Number: 200
Retransmit Times : 5
Request Times : 10
Server 1:
Server IP address: 10.20.30.40
Communication key with TACACS+ server:
Server port number: 200
Retransmit Times : 5
Request Times : 10
Tacacs server group:
Group Name Member Index
--------------------- -------------
tacacs+ 1
Console(config)#