Configuring tacacs+ on the switch, Before you begin, Configuring tacacs+ on the switch -14 – IronPort Systems 4108GL User Manual

9-14

Using Passwords and TACACS+ To Protect Against Unauthorized Access
TACACS+ Authentication for Central Control of Switch Access Security

Usi

n

g P

a

ssword

s a

nd

T

A

CA

CS

+

Configuring TACACS+ on the Switch

Before You Begin

If you are new to TACACS+ authentication, HP recommends that you read the
“General Authentication Setup Procedure” on page 9-11 and configure your
TACACS+ server(s) before configuring authentication on the switch.

The switch offers three command areas for TACACS+ operation:

■

show authentication and show tacacs: Displays the switch’s TACACS+
configuration and status.

■

aaa authentication: A command for configuring the switch’s authenti-
cation methods

■

tacacs-server: A command for configuring the switch’s contact with
TACACS+ servers

CLI Commands Described in this Section

Viewing the Switch’s Current Authentication Configuration

This command lists the number of login attempts the switch allows in a single
login session, and the primary/secondary access methods configured for each
type of access.

Syntax:

show authentication

show authentication

below

show tacacs

page 9-15

aaa authentication

pages page 9-16 through page 9-18

console

pages page 9-16 through page 9-18

Telnet

pages page 9-16 through page 9-18

num-attempts <1..10>

pages page 9-16 through page 9-18

tacacs-server

pages page 9-19

host <ip addr>

pages page 9-19

key

page 9-23

timeout <1 ..255>

page 9-24