Specifications
Security Configuration Command Set
Configuring TACACS+
13-28 Matrix DFE-Gold Series Configuration Guide
13.3.4.2 set tacacs
Use this command to enable, disable, or configure TACACS+ authentication.
set tacacs [{enable | disable}|| server {index | all address port [secret] | timeout
timeout} || session {authorization | accounting service} service | read-only
attribute | read-write attribute | super-user attribute [value] [disable | enable] ||
command {accounting | authorization {disable | enable}} || singleconnect
{disable | enable}]
Syntax Description
NOTE: The TACACS client can be enabled on the switch anytime (with or without
TACACS server online). If the TACACS server is offline and TACACS is enabled, the
authentication login is switched to RADIUS or local if enabled.
enable | disable Enables or disables the TACACS client.
server {index |
all address port
[secret] |
timeout timeout}
Sets the TACACS+ server configuration.
Index, the tacacs server index, 1 - 21474783647. All, sets
all servers. Address, the tacacs server IP address. Port, the
tacacs authentication server TCP port, 0 - 65535. Secret,
the tacacs server shared secret. Timeout, the timeout value
in seconds, 1 -180.
session
{authorization |
accounting
service} service |
read-only
attribute |
read-write
attribute |
super-user
attribute [value]
[disable | enable]
Sets the TACACS+ session attributes.
Authorization, set session authorization attributes.
Accounting, set session accounting attributes. Service,
value of service. Read-only, value of read-only attribute.
Read-write, value of read-write attribute. Super-user,
value of super-user attribute. Value, value of corresponding
attrib value pair. Disable, Disables the tacacs client.
Enable, enables the tacacs client