TACACS+ Authentication

Configuring TACACS+ on the Switch

For example, here is a set of access options and the corresponding commands to configure them:

Console Login (Operator or Read-Only) Access: Primary using TACACS+ server.Secondary using Local.

ProCurve (config)# aaa authentication console login tacacs local

Console Enable (Manager or Read/Write) Access: Primary using TACACS+ server. Secondary using Local.

ProCurve (config)# aaa authentication console enable tacacs local

Telnet Login (Operator or Read-Only) Access: Primary using TACACS+ server.

Secondary using Local.

ProCurve (config)# aaa authentication Telnet login tacacs local

Telnet Enable (Manager or Read/Write Access: Primary using TACACS+ server.

Secondary using Local.

ProCurve (config)# aaa authentication telnet enable tacacs local

Deny Access and Close the Session After Failure of Two Consecutive Username/Password Pairs:

ProCurve (config)# aaa authentication num-attempts 2

4-17