Service Manual
port number (OPTIONAL) Enter the keyword port then a number as the port to be used by the
TACACS+ server. The range is from zero (0) to 65535. The default is 49.
timeout seconds (OPTIONAL) Enter the keyword timeout then the number of seconds the switch waits
for a reply from the TACACS+ server. The range is from 0 to 1000. The default is 10
seconds.
key key
(OPTIONAL) Enter the keyword key then a string up to 42 characters long as the
authentication key. This authentication key must match the key specified in the
tacacs-server key for the TACACS+ daemon.
Defaults Not configured.
Command Modes CONFIGURATION
Command History
Version Description
9.9(0.0) Introduced on the FN IOM.
8.3.16.1 Introduced on the MXL 10/40GbE Switch IO Module.
Usage Information
To list multiple TACACS+ servers to be used by the aaa authentication login command, configure this
command multiple times.
If you are not configuring the switch as a TACACS+ server, you do not need to configure the port, timeout
and key optional parameters. If you do not configure a key, the key assigned in the tacacs-server key
command is used.
Related Commands
aaa authentication login — specifies the login authentication method.
tacacs-server key — configures a TACACS+ key for the TACACS server.
tacacs-server key
Configure a key for communication between a TACACS+ server and a client.
Syntax
tacacs-server key [encryption-type] key
To delete a key, use the no tacacs-server key key command.
Parameters
encryption-type (OPTIONAL) Enter either zero (0) or 7 as the encryption type for the key entered. The
options are:
• 0 is the default and means the key is not encrypted and stored as clear text.
• 7 means that the key is encrypted and hidden.
key Enter a text string, up to 42 characters long, as the clear text password. Leading spaces
are ignored.
Defaults Not configured.
Command Modes CONFIGURATION
Security 1097