3Com 10014302 Network Router User Manual


 
Parameter
ip ip-address: IP address of the TACACS+ server to be added.
name host-name: Name of the TACACS+ server to be added, which has been
configured by the IP host command. It is a string of 1 to 20 printable characters
except for the space.
port port-number: The service port number on the TACACS+ server, which is in the
range of 1 to 65535.
response-timeout time: The response timeout time of TACACS+ server, which is in
the range of 1 to 1000 seconds and defaults to 5 seconds.
shared-key key-string: The encrypted key for the AAA negotiation between the
Router and the TACACS+ server. It is a string of printable characters (except for the
space) of 1 to 64 characters in length. By default, the key configured using the
shared-key command is used.
authen-primary: Specify the server configured currently as the primary authentication
server.
author-primary: Specify the server configured currently as the primary authorization
server.
account-primary: Specify the server configured currently as the primary accounting
server.
Description
Using host command, you can add a TACACS+ server into a TACACS+ server group
by specifying its IP address as well as specifing it as the primary AAA server. Using
undo host command, you can delete a TACACS+ server from a TACACS+ server
group by specifying its IP address or you can disable it as the AAA primary server.
By default, no TACACS+ server is configured.
A server group allows of a maximum of five TACACS+ servers.
You can use the parameters authen-primary, author-primary, or account-primary
to specify the current configured TACACS+ server as the specified primary
authentication, authorization, or accounting server. If none of the servers in a sever
group has been specified as the primary server, the first one will be the primary
server.
If a primary server has been specified, and if the current AAA server is a standby
server, the switch interval specified by the timer quiet command in hwtacacs view will
be used to perform the standby/primary switchover operation. Otherwise, no switch
will be performed.
3Com Router Command Reference Guide Addendum for V1.2
41