DES-1228/ME Metro Ethernet Managed Switch CLI Reference Guide
271
Example usage:
To create the server group “group_1”:
DES-1228/ME:5#create authen server_group group_1
Command: create authen server_group group_1
Success.
DES-1228/ME:5#
config authen server_group
Purpose
Used to configure a user-defined authentication server group.
Syntax
config authen server_group [tacacs | xtacacs | | radius | <string
15>] [add | delete] server_host <ipaddr> protocol [tacacs | xtacacs |
| radius]
Description
This command is used to configure an authentication server group. A
server group is a technique used to group
TACACS/XTACACS//RADIUS server hosts into user defined
categories for authentication using method lists. The user may define the
type of server group by protocol or by previously defined server group. Up
to eight authentication server hosts may be added to any particular group
Parameters
server_group
−
The user may define the group by protocol groups built into
the Switch (TACACS/XTACACS//RADIUS), or by a user-defined
group previously created using the create authen server_group command.
tacacs – Use this parameter to utilize the built-in TACACS server protocol
on the Switch. Only server hosts utilizing the TACACS protocol may be
added to this group.
xtacacs – Use this parameter to utilize the built-in XTACACS server
protocol on the Switch. Only server hosts utilizing the XTACACS protocol
may be added to this group.
– Use this parameter to utilize the built-in server
protocol on the Switch. Only server hosts utilizing the protocol
may be added to this group.
radius – Use this parameter to utilize the built-in RADIUS server protocol
on the Switch. Only server hosts utilizing the RADIUS protocol may be
added to this group.
<string 15>
−
Enter an alphanumeric string of up to 15 characters to define
the previously created server group. This group may add any combination
of server hosts to it, regardless of protocol.
add/delete – Enter the correct parameter to add or delete a server host
from a server group.
server_host <ipaddr>
−
Enter the IP address of the previously configured
server host to add or delete.
protocol – Enter the protocol utilized by the server host. There are four
options:
tacacs – Use this parameter to define the protocol if the server host is using
the TACACS authentication protocol.
xtacacs – Use this parameter to define the protocol if the server host is
using the XTACACS authentication protocol.
– Use this parameter to define the protocol if the server host is
using the authentication protocol.
radius – Use this parameter to define the protocol if the server host is using
the RADIUS authentication protocol.
Restrictions
Only Administrator level users can issue this command.