User Authentication

3-59

3
CLI – Specify all the required parameters to enable logon authentication.

Configuring Encryption Keys

The Encryption Key feature provides a central location for the management of all
RADIUS and TACACS+ server encryption keys.
Command Attributes
RADIUS Settings
-Global – Provides globally applicable RADIUS encryption key settings.
-Server Index – Specifies one of five RADIUS servers for which an encryption
key may be configured.
- Secret Text String – Encryption key used to authenticate logon access for
client. Do not use blank spaces in the string. (Maximum length: 48 characters)
Console(config)#authentication login radius 4-81
Console(config)#radius-server port 181 4-84
Console(config)#radius-server key green 4-84
Console(config)#radius-server retransmit 5 4-85
Console(config)#radius-server timeout 10 4-85
Console(config)#radius-server 1 host 192.168.1.25 4-83
Console(config)#end
Console#show radius-server 4-85
Global Settings:
Communication Key with RADIUS Server:
Auth-Port: 1812
Retransmit Times: 2
Request Timeout: 5
Server 1:
Server IP Address: 192.168.1.25
Communication Key with RADIUS Server:
Auth-Port: 181
Retransmit Times: 5
Request Timeout: 10
Radius server group:
Group Name Member Index
--------------------- -------------
radius 1
Console#configure
Console(config)#authentication login tacacs 4-81
Console(config)#tacacs-server host 10.20.30.40 4-87
Console(config)#tacacs-server port 200 4-87
Console(config)#tacacs-server retransmit 5 4-85
Console(config)#tacacs-server timeout 10 4-85
Console(config)#tacacs-server key green 4-88
Console#show tacacs-server 4-89
Server IP address: 10.20.30.40
Communication key with tacacs server: green
Server port number: 200
Console(config)#