Owner's Manual
TACACS+ Commands 439
TACACS+ Commands
tacacs-server host
The
tacacs-server host
global configuration command specifies a TACACS+ server host. To delete
the specified hostname or IP address, use the
no
form of this command.
Syntax
tacacs-server host {
ip-address
|
hostname
} [single-connection] [port
port-number
] [timeout
timeout
] [key
key-string
] [source
source
] [priority
priority
]
no tacacs-server host {
ip-address
|
hostname
}
•
ip-address
—
The IP address of the TACACS+ server.
•
hostname—
The hostname of the TACACS+ server (Range: 1-158 characters).
•
single-connection—
Specify single-connection to maintain a single open connection
between the device and the TACACS+ daemon.
•
port-number—
The TACACS+ server port number. If unspecified, the port number
defaults to 49 (Range: 0-65535).
•
timeout—
The timeout value in seconds. If no timeout value is specified, the global value
is used (Range: 1-30).
•
key-string—
The authentication and encryption key for all TACACS communications
between the device and the TACACS+ server. This key must match the encryption used
on the TACACS+ daemon. If no key value is specified, the global value is used. Type "" to
specify an empty string (Range: 0-128).
•
source—
The source IP address to use for communication. If no source IP value is
specified, the global value is used. Specify 0.0.0.0 to use the IP address of the outgoing
interface. See the user guidelines for information on specifying an out-of-band IP address.
•
priority—
Determines the order in which the servers are used, where 0 is the highest
priority. (Range: 0-65535)
Default Configuration
No TACACS+ host is specified.
Command Mode
Global Configuration mode
User Guidelines
To specify multiple hosts, multiple
tacacs-server host
global configuration commands can be
used.