Tacacs+ configuration – HP VMA-series Memory Arrays User Manual

AM456-9007B Rev 02

HP VMA SAN Gateway Installation and User Guide

155

radius-server host {hostname , ip-address} [auth-port <port-
number>] [timeout <seconds>] [retransmit <retries>] [key
<string>]
no radius-server host {hostname , ip-address} [auth-port
<port-number>]

Add a RADIUS server to the set of servers used for authentication. Some of the

parameters given may override the configured global defaults for all RADIUS

servers. The

auth-port

defaults to 1812 and is used for authentication requests.

The same IP address can be used in more than one

radius-server host

command as long as the

auth-port

is different for each.

auth-port

is a UDP

port number.

auth-port

must be specified immediately after the host option (if

present).

If

no radius-server host {hostname , ip-address}

is specified, all

radius specific configuration for this host is deleted.

no radius-server host

{hostname , ip-address} auth-port <port>

may be specified to refine

which host is deleted, as the previous command will delete all RADIUS servers

with the specified ip-address.

RADIUS servers are tried in the order they are configured.

show radius

Show the RADIUS configuration.

Note:

We do not have CLI commands to specify the

acct-port

(accounting port)

or retransmit on a per server basis. Also, there is no

radius-server deadtime

command as there is in the Cisco command set.

TACACS+ Configuration

tacacs-server timeout <seconds>
no tacacs-server timeout

Sets (or resets to the default) a global communication value for all TACACS+

servers. Can be overridden in a

tacacs-server host

command. Defaults to 5.

Sets the wait time for retransmitting a request to any TACACS+ server. Range is

1-60.

tacacs-server retransmit <retries>
no tacacs-server retransmit