Tacacs/tacacs+ configuration considerations, Enabling tacacs, Tacacs configuration procedure – Brocade TurboIron 24X Series Configuration Guide User Manual

Page 123: Tacacs+ configuration procedure

Advertising

Brocade TurboIron 24X Series Configuration Guide

53-1003053-01

Configuring TACACS/TACACS+ security

TACACS/TACACS+ configuration considerations

•

You must deploy at least one TACACS/TACACS+ server in your network.

•

Devices support authentication using up to eight TACACS/TACACS+ servers. The device tries to
use the servers in the order you add them to the device configuration.

•

You can select only one primary authentication method for each type of access to a device (CLI
through Telnet, CLI Privileged EXEC and CONFIG levels). For example, you can select TACACS+
as the primary authentication method for Telnet CLI access, but you cannot also select RADIUS
authentication as a primary method for the same type of access. However, you can configure
backup authentication methods for each access type.

•

You can configure the device to authenticate using a TACACS or TACACS+ server, not both.

TACACS configuration procedure

Follow the procedure given below for TACACS configurations.

1. Identify TACACS servers. Refer to

“Identifying the TACACS/TACACS+ servers”

on page 90.

2. Set optional parameters. Refer to

“Setting optional TACACS/TACACS+ parameters”

on page 91.

3. Configure authentication-method lists. Refer to

“Configuring authentication-method lists for