Add TACACS+ Server

You can add TACACS+ connection details so that TACACS+ users can sign in to the XCO interface.

About this task

When a new TACACS+ server is added, XCO automatically adds it to the authentication preference settings if the authentication preference limit of five entries is not exceeded.

Procedure

  1. In the Navigation menu, select Users.
  2. Select Settings > TACACS+ Settings > Add TACACS+ Server.
    Alternatively, you can select TACACS+ > Connect TACACS+ to configure the first TACACS+ server.
    Create or update TACACS+ server
  3. In the Host field, enter the IPv4 or IPv6 address of the TACACS+ server, in CIDR format.
  4. In the Port field, enter the TCP port used for authentication.
    The default authentication port is 49.
  5. In the Secret Key field, enter the shared secret that enables messages between the client and the TACACS+ server.
    The value you enter must match the shared secret in the TACACS+ server configuration file.
  6. In the Protocol field, select one of the following authentication protocols.
    • CHAP: Challenge Handshake Authentication Protocol
    • PAP: Password Authentication Protocol
  7. Select Test Connection and Save to save your selections.
    The Settings page displays the new configuration.

What to do next

Map a TACACS+ User Role
9038086-00 Rev AA