Using Passwords and TACACS+ To Protect Against Unauthorized Access
TACACS+ Authentication for Central Control of Switch Access Security
Configuring TACACS+ on the Switch
Before You Begin
If you are new to TACACS+ authentication, HP recommends that you read the
"General Authentication Setup Procedure" on page 9-11 and configure your
TACACS+ server(s) before configuring authentication on the switch.
The switch offers three command areas for TACACS+ operation:
I
I
I
CLI Commands Described in this Section
show authentication
show tacacs
aaa authentication
tacacs-server
Viewing the Switch's Current Authentication Configuration
This command lists the number of login attempts the switch allows in a single
login session, and the primary/secondary access methods configured for each
type of access.
Syntax:
9-14
show authentication and show tacacs: Displays the switch's TACACS+
configuration and status.
aaa authentication: A command for configuring the switch's authenti-
cation methods
tacacs-server: A command for configuring the switch's contact with
TACACS+ servers
below
page 9-15
pages page 9-16 through page 9-18
console
pages page 9-16 through page 9-18
Telnet
pages page 9-16 through page 9-18
num-attempts <1..10>
pages page 9-16 through page 9-18
pages page 9-19
host <ip addr>
pages page 9-19
key
page 9-23
timeout <1 ..255>
page 9-24
show authentication