Technical data
50 Brocade 6910 Ethernet Access Switch Diagnostic Guide
53-1002348-02
TACACS and TACACS+
Remote TACACS+ Server Configuration:
Global Settings:
Server Port Number : 49
Retransmit Times : 2
Timeout : 5
Server 1:
Server IP Address : 10.11.12.13
Server Port Number : 49
Retransmit Times : 2
Timeout : 4
Tacacs Server Group:
Group Name Member Index
------------------------- -------------
tacacs+ 1
show users
Syntax: show users
This command displays the privilege level of users of all management interfaces.
Console# show users
User Name Accounts:
User Name Privilege Public-Key
--------- --------- ----------
admin 15 None
guest 0 None
steve 15 RSA
Online Users:
Line Username Idle time (h:m:s) Remote IP addr.
----------- -------- ----------------- ---------------
0 console admin 0:14:14
* 1 VTY 0 admin 0:00:00 192.168.1.19
2 SSH 1 steve 0:00:06 192.168.1.19
Web Online Users:
Line Remote IP Addr User Name Idle time (h:m:s)
----------- --------------- --------- ------------------
1 HTTP 192.168.1.19 admin 0:00:00
Configuration notes
• You must deploy at least one TACACS or TACACS+ server in your network to provide
authentication services.
• The Brocade device supports authentication using one TACACS or TACACS+ server.
• You can use the authentication login command to select a sequence of authentication
methods for each type of access to a device (CLI through Telnet, CLI Normal Exec and CLI
Privileged Exec levels). Use the authentication enable command to specify the sequence of
authentication methods to use when changing from Normal Exec command mode to Privileged
Exec command mode with the enable command.
• TACACS+ provides for authentication, authorization, and accounting, but an implementation or
configuration is not required to employ all three.