Netopia CLI 874 TACACS+ Authentication Conguration Commands

2-120 Command Line Interface Commands Reference

radius-server { 1 | 2 } { ip-address | hostname } [ secret secret ]

no radius-server { 1 | 2 }

show radius-server [ 1 | 2 ]

These commands allow you to specify, delete, or show a RADIUS server either by using an IP address in

dotted-quad notation or by using a hostname to be resolved using the Domain Name System (DNS) information

configured in the router. In addition to specifying the server’s IP address or hostname, you must also specify a

shared-secret known to both the router and the RADIUS server. The secret is used to encrypt RADIUS

transactions in transit.

Note: The commands in this section are supported beginning with firmware version 8.4, and supplement the

RADIUS server commands in the previous section.

console authentication

[ local | radius | radius-local | radius-local serial-only | local-radius |

tacacs-plus | tacacs-plus-local | tacacs-plus-local serial-only | local-tacacs-plus ]

This command sets the remote authentication protocol to RADIUS or TACACS+ and selects the ordering of the

security database lookup.

remote-server { index } { host } secret key

This command sets up the primary and alternate authentication servers. It applies to both RADIUS and

TACACS+. The radius-server command is retained for backward compatibility. If the remote authentication

tacacs-plus accounting [ yes | no ]