tacacs-server

Configures, modifies, or retrieves TACACS+ server configuration.

Resource URIs


URI	Description
<base_URI>/config/running/tacacs-server	TACACS+ server.

Parameters

hostname: Specifies the IP address or domain name of the TACACS+ server. IPv4 and IPv6 addresses are supported.
use-vrf: Specifies the VRF name.
encryption-level: Specifies the level of encryption of the key.
key: Specifies the text string that is used as the shared secret between the switch and the TACACS+ server to make the message exchange secure. The key value can range from 8 through 40 characters in length. The default key is sharedsecret.
port: Specifies the authentication port. Valid values range from 0 through 65535. The default is 49.
protocol: Specifies the authentication protocol. Options include CHAP and PAP. The default is CHAP.
retries: Specifies the number of attempts allowed to connect to a TACACS+ server. The number of retries can range from 0 through 100. The default number of retries is 5.
timeout: Specifies the time to wait for the TACACS+ server to respond. The wait time can range from 1 through 60 seconds. The default wait time is 5 seconds.
source-ip: Specifies the source IP to be used for TACACS+. Source IP can be used from chassis IP and MM IP. Configuring chassis-ip uses chassis IP as source address. Configuring mm-ip uses local MM IP as source address.

Usage Guidelines

GET, POST, PUT, PATCH, DELETE, OPTIONS, and HEAD operations are supported.

Examples

URI

The following example uses the GET option to retrieve the configuration details.

http://host:80/rest/config/running/tacacs-server

None

<tacacs-server xmlns="urn:brocade.com:mgmt:brocade-aaa" xmlns:y="http://brocade.com/ns/rest" 
y:self="/rest/config/running/tacacs-server">
  <host y:self="/rest/config/running/tacacs-server/host/10.20.38.100">
    <hostname>10.20.38.100</hostname>
    <use-vrf>mgmt-vrf</use-vrf>
    <port>55</port>
    <protocol>pap</protocol>
    <key>"Yf0BKEhsc83gp+kIoGMQ/g==\n"</key>
    <encryption-level>7</encryption-level>
    <retries>6</retries>
    <timeout>10</timeout>
  </host>
  <source-ip>chassis-ip</source-ip>
</tacacs-server>

URI

The following is an example of the POST operation to add a new host to the TACACS+ server.

http://host:80/rest/config/running/tacacs-server

<host>
   <hostname>10.20.38.110</hostname>
</host>

None

URI

The following is an example of the DELETE operation to remove a host name from the TACACS+ server.

http://host:80/rest/config/running/tacacs-server/host/10.20.38.110

None