© Copyright Lenovo 2017
Table 154.
TACACS+ Server Configuration Options (continued)
Command Syntax and Usage
tacacsserver chpassp <1‐32 characters>
Defines the password for the primary TACACS+ server.
Command mode: Global configuration
tacacsserver chpasss <1‐32 characters>
Defines the password for the secondary TACACS+ server.
Command mode: Global configuration
[no] tacacsserver commandauthorization
Enables or disables TACACS+ command authorization.
Command mode: Global configuration
[no] tacacsserver commandlogging
Enables or disables TACACS+ command logging.
Command mode: Global configuration
tacacsserver directedrequest [notruncate|restricted]
Enables TACACS+ directed request, which uses a specified TACACS+ server
for authentication, authorization, accounting. When directed‐request is
enabled, each user must add a configured TACACS+ server hostname to the
username (for example, username@hostname) during login.
This command allows the following options:
restricted: Only the username is sent to the specified TACACS+ server.
notruncate: The entire login string is sent to the TACACS+ server.
Command mode: Global configuration
no tacacsserver directedrequest
Disables TACACS+ directed request.
Command mode: Global configuration
[no] tacacsserver enable
Enables or disables the TACACS+ server.
By default, the server is disabled.
Command mode: Global configuration
[no] tacacsserver enablebypass
Enables or disables the enable‐bypass for administrator privilege.
By default, enable‐bypass is enabled.
Command mode: Global configuration
[no] tacacsserver encryptionenable
Enables or disables the encryption of TACACS+ packets.
Command mode: Global configuration
Chapter 4: Configuration Commands
359