Configuring TACACS+
Related Topics
Enabling TACACS+
By default, the TACACS+ feature is disabled on the Cisco NX-OS device. You must explicitly enable the
TACACS+ feature to access the configuration and verification commands for authentication.
SUMMARY STEPS
1. configure terminal
2. feature tacacs+
3. exit
4. (Optional) copy running-config startup-config
DETAILED STEPS
Command or Action
Step 1
configure terminal
Example:
switch# configure terminal
switch(config)#
Step 2
feature tacacs+
Example:
switch(config)# feature tacacs+
Step 3
exit
Example:
switch(config)# exit
switch#
Step 4
(Optional) copy running-config startup-config
Example:
switch# copy running-config startup-config
Configuring TACACS+ Server Hosts
To access a remote TACACS+ server, you must configure the IP address or the hostname for the TACACS+
server on the Cisco NX-OS device. You can configure up to 64 TACACS+ servers.
Note
By default, when you configure a TACACS+ server IP address or hostname on the Cisco NX-OS device, the
TACACS+ server is added to the default TACACS+ server group. You can also add the TACACS+ server
to another TACACS+ server group.
Enabling TACACS+
, on page 73
Cisco Nexus 9000 Series NX-OS Security Configuration Guide, Release 9.x
Purpose
Enters global configuration mode.
Enables TACACS+.
Exits configuration mode.
Copies the running configuration to the startup
configuration.
Enabling TACACS+
73