[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]


Configuring TACACS+ Authentication

Use the following configuration statements to configure information about one or more TACACS+ servers on the network at the [edit] hierarchy level:

system tacplus-server {
    address address; 
    secret secret ; 
}

To configure information about TACACS+ servers for authentication:

  1. From configuration mode, access the configuration statement that adds a RADIUS server.
  2. [edit]
    
    user@host# edit system tacplus-server
    
    
    
  3. Specify the address of the TACACS+ server.
  4. [edit system tacplus-server]
    
    user@host# set address address
    
    
    

To configure multiple TACACS+ servers, include multiple values for the address option.

  1. Specify a secret (password) that the C-series platform passes to the TACACS+ client by including the secret statement. Secrets can contain spaces. The secret used by the C-series platform must match the secret used by the TACACS+ server.
  2. [edit system tacplus-server]
    
    user@host# set secret secret
    
    
    

To configure a set of users that share a single account for authorization purposes, you create a template user. See Configuring Template Accounts for RADIUS and TACACS+ Authentication.


[Contents] [Prev] [Next] [Index] [Report an Error] [No Frames]