4 tacacs-server timeout, Tacacs, Server timeout – PLANET WGSW-50040 User Manual

Commands for Security Function Chapter 6 Commands for TACACS+

tacacs-server nas-ipv4” command deletes the configuration.

Parameter:

<ip-address> is the source IP address of TACACS+ packet, in dotted decimal notation, it must be a

valid unicast IP address.

Default:

No specific source IP address for TACACS+ packet is configured, the IP address of the interface

from which the TACACS+ packets are sent is used as source IP address of TACACS+ packet.

Command Mode:

Global Mode

Usage Guide:

The source IP address must belongs to one of the IP interface of the switch, otherwise an failure

message of binding IP address will be returned when the switch send TACACS+ packet. We

suggest using the IP address of loopback interface as source IP address, it avoids that the packets

from TACACS+ server are dropped when the interface link-down.

Example:

Configure the source ip address of TACACS+ packet as 192.168.2.254.

Switch#tacacs-server nas-ipv4 192.168.2.254

26.4 tacacs-server timeout

Command:

tacacs-server timeout <seconds>

no tacacs-server timeout

Function:

Configure a TACACS+ server authentication timeout timer; the “no tacacs-server timeout”

command restores the default configuration.

Parameter:

<seconds> is the value of TACACS+ authentication timeout timer, shown in seconds and the valid

range is 1~60.

Command Mode:

Global Mode

Default:

3 seconds by default.

Usage Guide:

The command specifies the period the switch wait for the authentication through TACACS+ server.

When connected to the TACACS+, and after sent the authentication query data packet to the