Configuring Tacacs+ Server Preshared Keys - Cisco Nexus 5000 Series Configuration Manual

Configuring TACACS+
DETAILED STEPS
Command or Action
Step 1
switch# configure terminal
Step 2
switch(config)# tacacs-server key [0 | 7]
key-value
Step 3 switch(config)# exit
Step 4 switch# show tacacs-server
Step 5 switch# copy running-config
startup-config
The following example shows how to configure global preshared keys:
switch# configure terminal
switch(config)# tacacs-server key 0 QsEfThUkO
switch(config)# exit
switch# show tacacs-server
switch# copy running-config startup-config
Related Topics
•

Configuring TACACS+ Server Preshared Keys

You can configure preshared keys for a TACACS+ server. A preshared key is a shared secret text string
between the Cisco Nexus 5000 Series switch and the TACACS+ server host.
To configure the TACACS+ preshared keys, perform this task:
SUMMARY STEPS
1. switch# configure terminal
2. switch(config)# tacacs-server host {ipv4-address | ipv6-address | host-name} key [0 | 7] key-value
3. switch(config)# exit
4. (Optional) switch# show tacacs-server
5. (Optional) switch# copy running-config startup-config
OL-20919-01
Enabling TACACS+ , page 45
Purpose
Enters configuration mode.
Specifies a preshared key for all TACACS+ servers. You can specify a
clear text ( 0 ) or encrypted ( 7 ) preshared key. The default format is
clear text. The maximum length is 63 characters.
By default, no preshared key is configured.
Exits configuration mode.
(Optional)
Displays the TACACS+ server configuration.
The preshared keys are saved in encrypted form in the running
Note
configuration. Use the show running-config command to display
the encrypted preshared keys.
(Optional)
Copies the running configuration to the startup configuration.
Cisco Nexus 5000 Series NX-OS Security Configuration Guide
Configuring TACACS+ Server Preshared Keys
47