Cisco WS-C4003 Software Guide - Page 372
Enabling TACACS+ Authentication, to force the switch to try TACACS+ authentication first.
View all Cisco WS-C4003 manuals
Add to My Manuals
Save this manual to your list of manuals |
Page 372 highlights
Configuring Authentication Chapter 27 Configuring Switch Access Using AAA Enable Authentication: Console Session Telnet Session tacacs disabled disabled radius disabled disabled local enabled(primary) enabled(primary) Tacacs key: Tacacs login attempts: 3 Tacacs timeout: 5 seconds Tacacs direct request: disabled Tacacs-Server 172.20.52.3 172.20.52.2 172.20.52.10 Console> (enable) Status ------- primary Enabling TACACS+ Authentication Note Specify at least one TACACS+ server before enabling TACACS+ authentication on the switch. For information on specifying a TACACS+ server, see the "Specifying TACACS+ Servers" section on page 27-17. You can enable TACACS+ authentication for login and enable access to the switch. If desired, you can use the console and telnet keywords to specify that TACACS+ authentication be used only on console or Telnet connections. If you are using both RADIUS and TACACS+, you can use the primary keyword to force the switch to try TACACS+ authentication first. To enable TACACS+ authentication, perform this task in privileged mode: Step 1 Step 2 Step 3 Task Command Enable TACACS+ authentication for normal login mode. Use the console or telnet keywords if you want to enable TACACS+ only for console port or Telnet connection attempts. set authentication login tacacs enable [all | console | http | telnet] [primary] Enable TACACS+ authentication for enable mode. Use the console or telnet keywords if you want to enable TACACS+ only for console port or Telnet connection attempts. set authentication enable tacacs enable [all | console | http | telnet] [primary] Verify the TACACS+ configuration. show authentication This example shows how to enable TACACS+ authentication for console and Telnet connections and how to verify the configuration: Console> (enable) set authentication login tacacs enable tacacs login authentication set to enable for console and telnet session. Console> (enable) set authentication enable tacacs enable tacacs enable authentication set to enable for console and telnet session. Console> (enable) show authentication Login Authentication: Console Session Telnet Session 27-18 Software Configuration Guide-Catalyst 4000 Family, Catalyst 2948G, Catalyst 2980G, Releases 6.3 and 6.4 78-12647-02