Owner manual
AM456-9026A HP VMA SAN Gateway User’s Guide 195
Sets (or clears) a global communication value for all TACACS+ servers. Can be overridden in a
tacacs-server host command. Sets the shared secret text string used to communicate with any
TACACS+ server.
Add a TACACS+ Authentication Server
[no] tacacs-server host {hostname , ip-address} [auth-port <port-
number>][auth-type {ascii, pap}] [timeout <seconds>] [retransmit
<retries>][key <string>]
Add a TACACS+ server to the set of servers used for authentication. Some of the parameters given
may override the configured global defaults for all TACACS+ servers. The
auth-port is used for
authentication requests. The
auth-type specifies which of the two currently supported
authentication methods will be used.
The same IP address can be used in more than one
tacacs-server host command as long as
the
auth-port is different for each. auth-port is a UDP port number. auth-port must be
specified immediately after the host option (if present).
If
no tacacs-server host {hostname , ip-address} is specified, all tacacs-specific
configuration for this host is deleted.
no tacacs-server host {hostname , ip-address}
auth-port <port>
may be specified to refine which host is deleted, as the previous command
will delete all TACACS+ servers with the specified ip-address.
TACACS+ servers are tried in the order they are configured.
Show the TACACS+ Configuration
show tacacs
Show the TACACS+ configuration.
Note: Currently there is no “single-connection” option on a per TACACS+ server basis.
SSH Configuration
This section provides the syntax for ssh server commands, along with an explanation of the
functionality of each command.