Configures the server information for a TACACS+ authentication server.
| primary | Configures the primary TACACS+ server. |
| secondary | Configures the secondary TACACS+ server. |
| host_ipaddr | The IP address of the TACACS+ server being configured. |
| host_ipV6addr | The IPv6 address of the TACACS+ accounting server being configured. |
| hostname | The host name of the TACACS+ server being configured. |
| tcp_port | The TCP port to use to contact the TACACS+ server. |
| client_ipaddr | The IP address used by the switch to identify itself when communicating with the TACACS+ server. |
| client_ipV6addr | The client IPv6 address used by the switch to identify itself when communicating with the TACACS+ accounting server. |
| vr_name | Specifies the virtual router
on which the client IP is located. Note: User-created VRs are
supported only on the platforms listed for this feature in the
Switch Engine 32.7.1 Feature License Requirements
document.
|
TACACS+ uses TCP port 49. The default virtual router is VR-Mgmt, the management virtual router.
Use this command to configure the server information for a TACACS+ server.
To remove a server, use the following command:
unconfigure tacacs server [primary | secondary]Use of the hostname parameter requires that DNS be enabled.
The following command configures server tacacs1 as the primary TACACS+ server for client switch 10.10.20.35 using a virtual router interface of VR-Default:
configure tacacs primary server tacacs1 client-ip 10.10.20.35 vr vr-Default
The following command configures IPv6 server 1111::220 as the primary TACACS+ server for client switch 1111::170 using virtual router interface of vr-mgmt:
# configure tacacs primary server 1111::220 client-ip 1111::170 vr vr-mgmt
This command was first available in ExtremeXOS 10.1.
IPv6 support was added in ExtremeXOS 32.6.
This command is available on all Universal switches supported in this document.