Cisco Nexus 5000 Series Command Reference Release 4.0(1a)N2(1) (OL-16599-01, March 2009)
Send comments to nx5000-docfeedback@cisco.com
6-138
Cisco Nexus 5000 Series Command Reference
OL-16599-01
Chapter 6 Security Commands
tacacs-server key
tacacs-server key
To configure a global TACACS+ shared secret key, use the tacacs-server key command. To remove a
configured shared secret, use the no form of this command.
tacacs-server key [0 | 7] shared-secret
no tacacs-server key [0 | 7] shared-secret
Syntax Description
Command Default None
Command Modes Configuration mode
Command History
Usage Guidelines You must configure the TACACS+ preshared key to authenticate the switch to the TACACS+ server. The
length of the key is restricted to 65 characters and can include any printable ASCII characters (white
spaces are not allowed). You can configure a global key to be used for all TACACS+ server
configurations on the switch. You can override this global key assignment by using the key keyword in
the tacacs-server host command.
You must use the feature tacacs+ command before you configure TACACS+.
Examples The following example shows how to configure TACACS+ server shared keys:
switch(config)# tacacs-server key AnyWord
switch(config)# tacacs-server key 0 AnyWord
switch(config)# tacacs-server key 7 public
Related Commands
0 (Optional) Configures a preshared key specified in clear text to authenticate
communication between the TACACS+ client and server. This is the default.
7 (Optional) Configures a preshared key specified in encrypted text to
authenticate communication between the TACACS+ client and server.
shared-secret Preshared key to authenticate communication between the TACACS+ client
and server. The maximum length is 63 characters.
Release Modification
4.0(0)N1(1a) This command was introduced.
Command Description
feature tacacs+ Enables TACACS+.
show tacacs-server Displays TACACS+ server information.