9-14
Using Passwords and TACACS+ To Protect Against Una uthorized Access
TACACS+ Authentication for Central Control of Switch Access Security
Using Passwords and
TACACS+
Configuring TACACS+ on the SwitchBefore You Begin
If you are new to TACACS+ authentication, HP recommends that you read the
“General Authentication Setup Procedure” on page 9-11 and configure your
TACACS+ server(s) before configuring authentication on the switch.
The switch offers three command areas for TACACS+ operation:
■show authentication and show tacacs: Displays the switch’s TACACS+
configuration and status.
■aaa authentication: A command for configuring the switch’s authenti-
cation methods
■tacacs-server: A command for configuring the switch’s contact with
TACACS+ servers
CLI Commands Described in this Section
Viewing the Switch’s Current Authentication Configuration
This command lists the number of login attempts the switch allows in a single
login session, and the primary/secondary access methods configured for each
type of access.
Syntax: show authentication
show authentication below
show tacacs page 9-15
aaa authentication pages page 9-16 through page 9-18
console pages page 9-16 through page 9-18
Telnet pa ges page 9-16 through page 9-18
num-attempts <1..10> pages page 9-16 th rough page 9-18
tacacs-server pages page 9-19
host <ip addr> pages page 9-19
key page 9-23
timeout <1 ..255> page 9-24