Switch User Manual
TACACS+ Configuration clear tacacs interface
27-12
Defaults
None.
Mode
Switchcommand,read‐write.
Usage
ThiscommandallowsyoutoconfigurethesourceIPaddressusedbytheTACACS+application
ontheswitchwhengeneratingpacketsformanagementpurposes.Anyofthemanagement
interfaces,includingVLANroutinginterfaces,canbeconfiguredasthesourceIPaddressusedin
packetsgeneratedbytheTACACS+client.
Aninterface
musthaveanIPaddressassignedtoitbeforeitcanbesetbythiscomm and.
Ifnointerfaceisspecified,thentheIPaddressoftheHostinterfac e willbeused.
Ifanon‐loopbackinterfaceisconfiguredwiththiscommand,applicationpacketegressis
restrictedtothatinterfaceif
theservercanbereachedfromthatinterface.Otherwise,thepackets
aretransmittedoverthefirstavailableroute.Packetsfromtheapplicationserverarereceivedon
theconfiguredinterface.
Ifaloopbackinterfaceisconfigured,andtherearemultiplepathstotheapplicationserver,the
outgoinginterface(gateway)isdeterminedbased
onthebestroutelookup.Packetsfromthe
applicationserverarethenreceivedonthesendinginterface.Ifrouteredundancyisrequired,
therefore,aloopbackinterfaceshouldbeconfigured.
Example
ThisexampleconfiguresanIPaddressonVLANinterface100andthensetsthatinterfaceasthe
TACACS+clientsourceIPaddress.
C3(rw)->router(Config-if(Vlan 100))#ip address 192.168.10.1 255.255.255.0
C3(rw)->router(Config-if(Vlan 100))#exit
C3(rw)->router(Config)#exit
C3(rw)->router#exit
C3(rw)->router>exit
C3(rw)->set tacacs interface vlan 100
C3(rw)->show tacacs interface
vlan 100 192.168.10.1
clear tacacs interface
UsethiscommandtocleartheinterfaceusedforthesourceIPaddressoftheTACACS+clientback
tothedefaultoftheHostinterface.
Syntax
clear tacacs interface
Parameters
vlanvlan‐ID SpecifiestheVLANinterfacetobeused.Thevalueofvlan‐IDcanrange
from1to4093.