Filter
Top Products
Each TACACS+ server group allows only one primary authentication server, one
primary authorization server, and one primary accounting server. When you configure
a second primary server, there will be prompt information, the previous primary AAA
server will be changed into a common server, and the newly configured server will be
taken as the primary one.
If the number of servers configured in a template exceeds the allowed upper
threshold, the following prompt will be displayed:
Warning: Reach the max limited of server in one template.
If the host-name argument has not been mapped to an IP address using the ip host
command, the configuration will fail, and the following prompt will be displayed:
Warning: no such host.
If the specified server to be deleted using the undo host command is the specified
primary AAA server in the server group, the following prompts will be displayed:
Warning: The Server is a authen-primary Server.
Warning: The Server is a author-primary Server.
Warning: The Server is a account-primary Server.
If configuring undo host with the parameter authen-primary or author-primary or
account-primary, you will only disable the primary server property of the server
rather than removing the server from the server group.
When you attempt to configure a second primary authentication, authorization, or
accounting server, the following prompts will be displayed:
Warning: Only permit one authen-primary Server.
Warning: Only permit one author-primary Server.
Warning: Only permit one account-primary Server.
For related commands, see hwtacacs-server template and timer quiet.
Example
# Configure TACACS+ servers in the TACACS+ server group tactemplate1, and
specify the server at 1.1.1.1 as the primary AAA server in tactemplate1.
[Router] hwtacacs-server template tactemplate1
[Router-hwtacacs-tactemplate1]host ip 1.1.1.1 authen-primary
[Router-hwtacacs-tactemplate1] host ip 1.1.1.1 author-primary
[Router-hwtacacs-tactemplate1] host ip 1.1.1.1 account-primary
[Router-hwtacacs-tactemplate1] host ip 1.1.1.2
3Com Router Command Reference Guide Addendum for V1.2
42