Configuring TACACS+ Authentication with the SRC CLI
Use the following configuration statements to configure information about one or more TACACS+ servers on the network at the
[edit]
hierarchy level:system tacplus-server {addressaddress
;secretsecret
;}To configure information about TACACS+ servers for authentication:
- From configuration mode, access the configuration statement that adds a RADIUS server.
[edit]user@host#edit system
tacplus-server- Specify the address of the TACACS+ server.
[edit system tacplus-server]user@host#set address
address
To configure multiple TACACS+ servers, include multiple values for the
address
option.
- Specify a secret (password) that the C-series Controller passes to the TACACS+ client by including the
secret
statement. Secrets can contain spaces. The secret used by the C-series Controller must match the secret used by the TACACS+ server.[edit system tacplus-server]user@host#set secret
secret
To configure a set of users that share a single account for authorization purposes, you create a template user. See Configuring Template Accounts for RADIUS and TACACS+ Authentication with the SRC CLI.