Displays the current TACACS+ configuration and statistics.
This command has no arguments or variables.
N/A.
TACACS+—The current state of TACACS+, enabled or disabled.
TACACS+ Authorization—The current state of TACACS+ authorization, enabled or disabled.
TACACS+ Accounting—The current state of TACACS+ accounting, enabled or disabled.
TACACS+ Server Connect Timeout—The amount of time configured to detect and recover from a TACACS+ server failure.
The name of the primary TACACS+ server.
The IP address of the primary TACACS+ server.
The TCP port to use to contact the primary TACACS+ server.
The IP address and VR used by the switch.
The shared secret configured for the primary TACACS+ server.
Secondary TACACS+ Server—Contains the same type of output as the primary TACACS+ server for the secondary TACACS+ server, if configured.
TACACS+ Acct Server Connect Timeout—The amount of time configured to detect and recover from a TACACS+ accounting server failure.
TACACS+ Accounting Server parameters, if configured. Contains the same type of output as the TACACS+ server for the TACACS+ accounting server(s), if configured.
The following command displays TACACS+ client configuration and statistics:
show tacacs
The following is sample output from this command:
TACACS+: enabled TACACS+ Authorization: enabled TACACS+ Accounting : enabled TACACS+ Server Connect Timeout sec: 3 Primary TACACS+ Server: Server name : IP address : 10.201.31.238 Server IP Port: 49 Client address: 10.201.31.65 (VR-Default) Shared secret : qijxou Secondary TACACS+ Server: Server name : IP address : 10.201.31.235 Server IP Port: 49 Client address: 10.201.31.65 (VR-Default) Shared secret : qijxou TACACS+ Acct Server Connect Timeout sec: 3 Primary TACACS+ Accounting Server: Server name : IP address : 10.201.31.238 Server IP Port: 49 Client address: 10.201.31.65 (VR-Default) Shared secret : qijxou Secondary TACACS+ Accounting Server: Server name : IP address : 10.201.31.235 Server IP Port: 49 Client address: 10.201.31.65 (VR-Default) Shared secret : qijxou
The following command displays TACACS+ client configuration and statistics with IPv6 support (line 13 and 29):
#show tacacs
TACACS+ Configuration
Admin Status : enabled
Authorization : disabled
Authorization priv-lvl : optional
Fallback Authentication : local
Accounting : enabled
Server Connect Timeout : 3 sec
Primary Server :
Server name :
IP address : 1111::220
Server IP Port: 49
Client address: 1111::170 (VR-Mgmt)
Shared secret :
Authentication:
Requests : 0 Responses : 0
Password : 0
Passed : 0 Failed : 0
Authorization:
Requests : 0 Responses : 0
Passed : 0 Failed : 0
Secondary Server :
Server name :
IP address : 1111::210
Server IP Port: 49
Client address: 1111::170 (VR-Mgmt)
Shared secret :
Authentication:
Requests : 3 Responses : 3
Password : 0
Passed : 0 Failed : 0
Authorization:
Requests : 0 Responses : 0
Passed : 0 Failed : 0
Acct Server Connect Timeout : 3 sec
Primary Accounting Server :
Server name :
IP address : 1111::220
Server IP Port: 49
Client address: 1111::170 (VR-Mgmt)
Shared secret :
Accounting:
Requests : 0 Responses : 0
Successes : 0 Errors : 0
Follows : 0
Secondary Accounting Server :
Server name :
IP address : 1111::210
Server IP Port: 49
Client address: 1111::170 (VR-Mgmt)
Shared secret :
Accounting:
Requests : 0 Responses : 0
Successes : 0 Errors : 0
Follows : 0
This command was first available in ExtremeXOS 10.1.
IPv6 support was added in ExtremeXOS 32.6.
This command is available on ExtremeSwitching X435, X440-G2, X450-G2, X460-G2, X465, X590, X620, X690, and X695 series switches.