Cisco MDS 9000 Series Configuration Manual page 91
Security
Hide thumbs
Also See for MDS 9000 Series:
- Command reference manual (1464 pages) ,
- Configuration manual (344 pages) ,
- Troubleshooting manual (161 pages)
Table of Contents
Advertisement
Configuring Security Features on an External AAA Server
Note
If secret keys are configured for individual servers, those keys override the globally configured key.
Configuring TACACS+ Server Monitoring Parameters
You can configure parameters for monitoring TACACS+ servers.
This section includes the following topics:
Configuring the TACACS+ Test Idle Timer
The test idle timer specifies the interval during which a TACACS+ server receives no requests before the
MDS switch sends out a test packet.
Note
The default idle timer value is 0 minutes. When the idle time interval is 0 minutes, periodic TACACS+ server
monitoring is not performed.
To configure the idle timer, follow these steps:
Procedure
Step 1
switch# configure terminal
Enters configuration mode.
Step 2
switch(config)# tacacs-server host 10.1.1.1 test idle-time 20
Configures the test idle time interval value in minutes. The valid range is 1 to 1440 minutes.
Step 3
switch(config)# no tacacs-server host 10.1.1.1 test idle-time 20
(Optional) Reverts to the default value (0 minutes).
Configuring Test Username
You can configure a username and password for periodic TACACS+ server status testing. You do not need
to configure the user name and password to monitor TACACS+ servers. You can use the default test username
(test) and default password (test).
To configure the optional username and password for periodic TACACS+ server status testing, follow these
steps:
Procedure
Step 1
switch# configure terminal
Configuring TACACS+ Server Monitoring Parameters
Cisco MDS 9000 Series Security Configuration Guide, Release 8.x
73
Advertisement
Chapters
Table of Contents
