tacacs-server login host
Use this command to set the TACACS+ server host name or IP address.
Use the no form of this command to remove an TACACS+ server (if only a host name or IP address is specified as a parameter) or to remove all of a TACACS+ server’s configuration settings (if any other parameters are also specified).
Command Syntax
tacacs-server login host (HOSTNAME | X:X::X:X | A.B.C.D) (vrf management|) (seq-num <1-8> |) (key ((0 WORD) | (7 WORD) )|) (port <1025-65535> |) (timeout <1-60>|)
tacacs-server login host (A.B.C.D|X:X::X:X|HOSTNAME) (vrf management|) seq-num <1-8> key (0|7) WORD port <1025-65535> timeout <1-60>
no tacacs-server login host (A.B.C.D|X:X::X:X|HOSTNAME) (vrf management|) seq-num <1-8> key (0|7) WORD port <1025-65535> timeout <1-60>
Parameters
HOSTNAME
Host name
X:X::X:X
IPv6 address
A.B.C.D
IPv4 address
vrf management
Virtual Routing and Forwarding Management VRF
seq-num
Sequence Number / Priority index for tacacs-servers
key
Authentication and encryption key (“shared secret”)
0
Unencrypted (clear text) shared key
WORD
Unencrypted key value; maximum length 63 characters
7
Hidden shared key
WORD
Hidden key value; maximum length 512 characters
port
TACACS+ server port
<1205-65535>
TACACS+ server port number; the default is 49
timeout
TACACS+ server timeout
<1-60>
Timeout value in seconds; default is 5 seconds
Default
Enable authentication for TACACS+ server configured. Authorization is also enabled by default. The default server port is 49.
There is no command to enable authorization. Authorization functionality is enabled by default when remote authentication is enabled with TACACS+.
Command Mode
Configure mode
Applicability
This command was introduced before OcNOS version 1.3.
Examples
#configure terminal
(config)#tacacs-server login host 203.0.113.31 vrf management seq-num 3
Last modified date: 10/19/2023