Enhancements in Release F.02.02

TACACS+ Authentication for Centralized Control of Switch Access Security

Viewing the Switch’s Current Authentication Configuration

This command lists the number of login attempts the switch allows in a single login session, and the primary/secondary access methods configured for each type of access.

Syntax: show authentication

This example shows the default authentication configuration.

Configuration for login and enable access to the switch through the switch console port.

Configuration for login and enable access to the switch through Telnet.

Figure 83. Example Listing of the Switch’s Authentication ConfigurationViewing the Switch’s Current TACACS+ Server Contact Configuration

This command lists the timeout period, encryption key, and the IP addresses of the first-choice and backup TACACS+ servers the switch can contact.

Syntax: show tacacs

For example, if the switch was configured for a first-choice and two backup TACACS+ server addresses, the default timeout period, and paris-1for a (global) encryption key, show tacacs would produce a listing similar to the following:

First-Choice

TACACS+ Server

Second-Choice

TACACS+ Server

Third-Choice

TACACS+ Server

Figure 84. Example of the Switch’s TACACS+ Configuration Listing

173