C H A P T E R 4

Configuring the CSS as a Client of a

TACACS+ Server

The Terminal Access Controller Access Control System (TACACS+) protocol provides access control for routers, network access servers (NAS), or other devices through one or more daemon servers. TACACS+ encrypts all traffic between the NAS and daemon using TCP communications for reliable delivery.

You can configure the CSS as a client of a TACACS+ server to provide a method for authentication of users, and a method of authorization and accounting of configuration and nonconfiguration commands.

This chapter contains the following major sections:

TACACS+ Configuration Quick Start

Configuring TACACS+ Server User Accounts for Use with the CSS

Configuring Global TACACS+ Attributes

Defining a TACACS+ Server

Setting TACACS+ Authorization

Setting TACACS+ Accounting

Showing TACACS+ Server Configuration Information

After you configure the TACACS+ server on the CSS, configure TACACS+ authentication for virtual or console authentication. Refer to Chapter 1, Controlling CSS Access for details.

 

 

Cisco Content Services Switch Security Configuration Guide

 

 

 

 

 

 

OL-5650-02

 

 

4-1

 

 

 

Page 83
Image 83
Cisco Systems OL-5650-02 manual TACACS+ Server