TACACS+ Authentication

Configuring TACACS+ on the Switch

Viewing the Switch’s Current Authentication

Configuration

This command lists the number of login attempts the switch allows in a single login session, and the primary/secondary access methods configured for each type of access.

Syntax: show authentication

This example shows the default authentication configuration.

Configuration for login and enable access to the switch through the switch console port.

Configuration for login and enable access to the switch through Telnet.

Figure 2-2. Example Listing of the Switch’s Authentication Configuration

Viewing the Switch’s Current TACACS+ Server Contact Configuration

This command lists the timeout period, encryption key, and the IP addresses of the first-choice and backup TACACS+ servers the switch can contact.

Syntax: show tacacs

For example, if the switch was configured for a first-choice and two backup TACACS+ server addresses, the default timeout period, and paris-1for a (global) encryption key, show tacacs would produce a listing similar to the following:

First-Choice

TACACS+ Server

Second-Choice

TACACS+ Server

Third-Choice

TACACS+ Server

Figure 2-3. Example of the Switch’s TACACS+ Configuration Listing

2-10

Page 38
Image 38
HP 4100gl manual Viewing the Switch’s Current Authentication Configuration