Configuring Tacacs Authorization Servers - 3Com 4210 9-Port Configuration Manual

Operation
Set the IP address and port
number of the primary TACACS
authentication server
Set the IP address and port
number of the secondary
TACACS authentication server
You are not allowed to configure the same IP address for both primary and secondary
authentication servers. If you do this, the system will prompt that the configuration fails.
You can remove an authentication server setting only when there is no active TCP connection that
is sending authentication messages to the server.

Configuring TACACS Authorization Servers

Table 2-27 Configure TACACS authorization servers
Operation
Enter system view
Create a HWTACACS scheme
and enter its view
Set the IP address and port
number of the primary TACACS
authorization server
Set the IP address and port
number of the secondary
TACACS authorization server
You are not allowed to configure the same IP address for both primary and secondary authorization
servers. If you do this, the system will prompt that the configuration fails.
You can remove a server only when it is not used by any active TCP connection for sending
authorization messages.
Command
primary authentication
ip-address [ port ]
secondary authentication
ip-address [ port ]
Command
system-view
hwtacacs scheme
hwtacacs-scheme-name
primary authorization
ip-address [ port ]
secondary authorization
ip-address [ port ]
2-25
Remarks
Required
By default, the IP address of the
primary authentication server is
0.0.0.0, and the port number is
0.
Optional
By default, the IP address of the
secondary authentication
server is 0.0.0.0, and the port
number is 0.
Remarks
—
Required
By default, no HWTACACS
scheme exists.
Required
By default, the IP address of the
primary authorization server is
0.0.0.0, and the port number is 0.
Optional
By default, the IP address of the
secondary authorization server is
0.0.0.0, and the port number is 0.