Configuring TACACS+
TACACS+ is a security application that provides centralized validation of users attempting to gain access
to a router or network access server. TACACS+ provides detailed accounting information and flexible
administrative control over authentication and authorization processes. TACACS+ is facilitated through
authentication, authorization and accounting (AAA) and can be enabled only through AAA commands.
•
•
•
•
•
•
•
•
Finding Feature Information
Your software release may not support all the features documented in this module. For the latest caveats and
feature information, see Bug Search Tool and the release notes for your platform and software release. To
find information about the features documented in this module, and to see a list of the releases in which each
feature is supported, see the feature information table at the end of this module.
Use Cisco Feature Navigator to find information about platform support and Cisco software image support.
To access Cisco Feature Navigator, go to http://www.cisco.com/go/cfn. An account on Cisco.com is not
required.
Prerequisites for TACACS+
The following are the prerequisites for set up and configuration of switch access with TACACS+ (must be
performed in the order presented):
1 Configure the switches with the TACACS+ server addresses.
Finding Feature Information, page 775
Prerequisites for TACACS+, page 775
Restrictions for TACACS+, page 776
Information About TACACS+, page 777
How to Configure TACACS+, page 883
Configuration Examples for TACACS+, page 895
Additional References for TACACS+, page 899
Feature Information for TACACS+, page 900
Consolidated Platform Configuration Guide, Cisco IOS Release 15.2(4)E (Catalyst 2960-X Switches)
35
C H A P T E R
775