User Manual
Configuring X-Pedition Access Security
390 Enterasys X-Pedition User Reference Manual
TACACS Plus
Configuring TACACS Plus
You can secure login or Enable mode access to the X-Pedition by enabling a TACACS Plus client.
A TACACS Plus server responds to the X-Pedition TACACS Plus client to provide authentication.
You can configure up to five TACACS Plus server targets on the X-Pedition. A timeout is set to tell
the X-Pedition how long to wait for a response from TACACS Plus servers. To configure TACACS
Plus security, enter the following commands in Configure mode:
Note: The X-Pedition no longer supports TACACS and will ignore any commands used for it in
the configuration—without generating an error.
Specify a TACACS Plus server.
tacacs-plus set server <hostname or IP-addr>
Set the TACACS Plus time to wait
for a TACACS Plus server reply.
tacacs-plus set timeout <number>
Determine the X-Pedition action if
no server responds.
tacacs-plus set last-resort password|succeed|deny
Enable TACACS Plus.
tacacs-plus enable
Cause TACACS Plus authentication
at user login or when user tries to
access Enable mode.
tacacs-plus authentication login|enable
Cause TACACS Plus authentication
at user login or when user tries to
access Enable mode.
tacacs-plus authentication login|enable
Logs specified types of command to
TACACS Plus server.
tacacs-plus accounting command level <level>
Logs to TACACS Plus server when
shell is stopped or started on
X-Pedition.
tacacs-plus accounting shell start|stop|all
Logs to TACACS Plus server SNMP
changes to startup or active
configuration.
tacacs-plus accounting snmp active|startup
Logs specified type(s) of messages to
TACACS Plus server.
tacacs-plus accounting system fatal|error|warning|info