xStack
create authen server_host
<key_string 254> - Specify an alphanumeric string up to
| 254 characters to be a key for the TACACS server. |
| none – Specify this parameter to not use any key. |
| timeout <int |
| for the server host to reply to an authentication request. The default |
| value is 5 seconds. |
| retransmit <int |
| change how many times the device will resend an authentication |
| request when the TACACS/XTACACS/TACACS+ or RADIUS |
| server does not respond. |
Restrictions | Only |
Example usage:
To create a TACACS+ authentication server host, with port number 1234, a timeout value of 10 seconds and a retransmit count of 5.
Command: create authen server_host 10.1.1.121 protocol tacacs+ port 1234 timeout 10 retransmit 5
Success.
config authen server_host
Purpose | Used to configure a |
Syntax | config authen server_host <ipaddr> protocol [tacacs xtacacs |
| tacacs+ radius] {port <int |
| none] timeout <int |
Description | This command will configure a |
| host for the TACACS/XTACACS/TACACS+ and RADIUS security |
| protocols on the Switch. When a user attempts to access the |
| Switch with authentication protocol enabled, the Switch will send |
| authentication packets to a remote |
| TACACS/XTACACS/TACACS+/RADIUS server host on a remote |
| host. The TACACS/XTACACS/TACACS+/RADIUS server host will |
| then verify or deny the request and return the appropriate message |
| to the Switch. More than one authentication protocol can be run on |
| the same physical server host but, remember that |
| TACACS/XTACACS/TACACS+ are separate entities and are not |
| compatible with each other. The maximum supported number of |
| server hosts is 16. |
Parameters | server_host <ipaddr> - The IP address of the remote server host to |
| be altered. |
| protocol – The protocol used by the server host. The user may |
| choose one of the following: |
| tacacs – Enter this parameter if the server host utilizes the |
166
