3.2.7. aaa

Configuration data for aaa servers.

vrouter running config# system aaa

tacacs

List of tacacs servers on the system.

vrouter running config# system aaa tacacs <uint32>

address (mandatory)

TACACS+ server IPv4 or IPv6 address. It has to be accessible from vrf ‘main’.

vrouter running config# system aaa tacacs <uint32>
vrouter running tacacs <uint32># address ADDRESS
ADDRESS values Description
<A.B.C.D> An IPv4 address.
<X:X::X:X> An IPv6 address.

port

Port number to reach the TACACS server.

vrouter running config# system aaa tacacs <uint32>
vrouter running tacacs <uint32># port <uint16>
Default value
49

secret (mandatory)

TACACS+ client/server shared secret.

vrouter running config# system aaa tacacs <uint32>
vrouter running tacacs <uint32># secret <string>

timeout

Timeout before trying to reach another TACACS+ server.

vrouter running config# system aaa tacacs <uint32>
vrouter running tacacs <uint32># timeout <uint8>
Default value
3

order (state only)

Order for TACACS+ servers. They will be reached by increasing order value.

vrouter> show state system aaa tacacs <uint32> order