Configuring TACACS in Router

Posted by Prashanth S December 23, 2014

Configuring TACACS in Router

Now in this post we can see how to configure TACACS in a router assuming the server is already configured.

username dp password smilewithdp2

tacacs-server host x.x.x.x -----à Primary ACS Server

tacacs-server host x.x.x.x -----à Secondary ACS Server

tacacs-server directed-request

tacacs-server key smilewithdp1

aaa new-model

aaa authentication login default local

aaa authentication login vty tacacs+ local

aaa authentication enable default tacacs+ enable

line vty 0 4

privilege level 15

exec-time 3 0

exit

line console 0

exec-time 3 0

password smilewithdp

exit

aaa authorization commands 1 default tacacs+ local

aaa authorization commands 15 default tacacs+ local

aaa accounting commands 15 default start-stop tacacs+

ip tacacs source-interface loopback 0 *

Note : When we forcing the “ip tacacs source-interface “ the Interface should be the one which you have added the IP address on ACS box as Client for this Network Equipment and ACS will only authenticate the hits coming from this IP

Search This Blog

DP's Corner

Configuring TACACS in Router

Comments

Post a Comment

Popular Posts

Automatic Railway Gate Control and Track Switch

Network Time Protocol (NTP)