Chapter 25 AAA

25.2.2 TACACS+ Server Setup

Use this screen to configure your TACACS+ server settings. See Section 25.1.2 on page 203 for more information on TACACS+ servers. Click on the TACACS+ Server Setup link in the Authentication and Accounting screen to view the screen as shown.

Figure 113 Advanced Application > AAA > TACACS+ Server Setup

The following table describes the labels in this screen.

Table 74 Advanced Application > AAA > TACACS+ Server Setup

LABEL

DESCRIPTION

Authentication

Use this section to configure your TACACS+ authentication settings.

Server

 

 

 

Mode

This field is only valid if you configure multiple TACACS+ servers.

 

Select index-priorityand the Switch tries to authenticate with the first configured TACACS+

 

server, if the TACACS+ server does not respond then the Switch tries to authenticate with the

 

second TACACS+ server.

 

Select round-robinto alternate between the TACACS+ servers that it sends authentication

 

requests to.

 

 

Timeout

Specify the amount of time in seconds that the Switch waits for an authentication request

 

response from the TACACS+ server.

 

If you are using index-priorityfor your authentication and you are using two TACACS+

 

servers then the timeout value is divided between the two TACACS+ servers. For example, if

 

you set the timeout value to 30 seconds, then the Switch waits for a response from the first

 

TACACS+ server for 15 seconds and then tries the second TACACS+ server.

 

 

Index

This is a read-only number representing a TACACS+ server entry.

 

 

IP Address

Enter the IP address of an external TACACS+ server in dotted decimal notation.

 

 

206

 

ES3500 Series User’s Guide