Set authentication – Allied Telesis AT-S63 User Manual

Chapter 45: TACACS+ and RADIUS Commands

812

Section IX: Management Security

SET AUTHENTICATION

Syntax

set authentication method=tacacs|radius [secret=

string

]

[timeout=

value

]

Parameters

method

Specifies which authenticator protocol, TACACS+ or
RADIUS, is to be the active protocol on the switch.

secret

Specifies the global encryption key of the TACACS+
or RADIUS servers. If the servers use different
encryption keys, you can leave this parameter blank
and set individual encryption keys with “ADD
TACACSSERVER” on page 804 or “ADD
RADIUSSERVER” on page 802. To remove a
previously assigned global key without specifying a
new value, enter the string as “none”. The maximum
length is 39 characters.

timeout

Specifies the maximum amount of time the switch
waits for a response from an authentication server
before the switch assumes the server will not
respond. If the timeout expires and the server has not
responded, the switch queries the next server in the
list. After the switch has exhausted the list of servers,
the switch defaults to the standard Manager and
Operator accounts. The default is 30 seconds. The
range is 1 to 300 seconds.

Description

This command selects the authentication protocol. Only one
authentication protocol can be active on a switch or stack at a time. You
may specify a global encryption code and the maximum number of
seconds the switch or stack should wait for a response from an
authenticator server.

Examples

The following command selects TACACS+ as the authentication protocol:

set authentication method=tacacs

The following command selects TACACS+ as the authentication protocol
and specifies a global encryption key of tiger54:

set authentication method=tacacs secret=tiger54

Command

Available

AlliedWare Plus