Chapter 5
Configuring the Management Interface and Security
1.
2.
3.
If TACACS+ is used as the login method, the TACACS+ username is used automatically in the enable
Note
command. Therefore, it is important to configure the same usernames in both TACACS+ and the local
database so that the enable command can recognize this username.
4.
5.
Configuring the SCE Platform TACACS+ Client
•
•
•
•
OL-7827-12
For complete details on server configuration, refer to the appropriate configuration guide for the
particular TACACS+ server that you will be using.
Configure the SCE client to work with TACACS+ server:
hostname of the server
–
port number
–
shared encryption key (the configured encryption key must match the encryption key configured
–
on the server in order for the client and server to communicate.)
(Optional) Configure the local database, if used.
add new users
–
If the local database and TACACS+ are both configured, it is recommended to configure the same
user names in both TACACS+ and the local database. This will allow the users to access the SCE
platform in case of TACACS+ server failure.
specify the password
–
define the privilege level
–
Configure the authentication methods on the SCE platform.
–
login authentication methods
–
privilege level authorization methods
Review the configuration.
Use the " show running-config " command to view the configuration.
How to Add a new TACACS+ Server Host, page 5-16
How to Remove a TACACS+ Server Host, page 5-17
How to Configure the Global Default Key, page 5-17
How to Configure the Global Default Timeout, page 5-18
Cisco SCE 2000 and SCE 1000 Software Configuration Guide
Configuring the Available Interfaces
5-15