server - 188金宝搏的网址

Syntax

server {||} [tls] [port <PORT-NUMBER>][多联机<VRF-NAME>] no server {||} [tls] [port <PORT-NUMBER>][多联机<VRF-NAME>]

Description

Adds a TACACS+/RADIUS server to a server-group. Only the configured TACACS+/RADIUS servers are allowed to be added within the server group. If the same server name exists with multiple ports or multiple VRFs, specify the server name, port, and VRF when adding the server to the server-group.

Thenoform of this command removes a TACACS+/RADIUS server from a server-group.

Command context

config-sg

Parameters

{||}

Specifies the server as:

: a fully qualified domain name.
: an IPv4 address.
: IPv6地址。

tls

Specifies the TLS protection for the RADIUS server.

If TLS is configured without a port number, the system searches the RADIUS server by host name and sets the default authentication port (2083). Group server priority is assigned based on the sequence in which the servers are added.

port

Specifies the authentication port number. Range: 1 to 65535. Default TACACS+ (TCP): 49, RADIUS (UDP): 1812 and RadSec: 2083.

If a port number is not provided, the system searches the TACACS+/RADIUS server by host name and sets the default authentication port. Group server priority is assigned based on the sequence in which the servers are added.

vrf

Specifies the VRF name.

Authority

Administrators or local user group members with execution rights for this command.

Examples

Adding a server to TACACS+ server group sg1 by providing an IPv4 address, port number, and VRF name:

switch(config)#aaa group server tacacs sg1switch(config-sg)#server 1.1.1.2 port 32 vrf mgmt

switch(config)#aaa group server tacacs sg1switch(config-sg)#server 1.1.1.2 tls

Adding a server to TACACS+ server group sg2 by providing an IPv6 address and default VRF:

switch(config)#aaa group server tacacs sg2switch(config-sg)#server 2001:0db8:85a3:0000:0000:8a2e:0370:7334 vrf default

Adding a server to RADIUS server group sg3 by providing an IPv4 address, port number, and VRF name:

switch(config)#aaa group server radius sg3switch(config-sg)#server 1.1.1.5 port 12 vrf mgmt

Adding a server to RADIUS server group sg3 with TLS protection by providing an IPv4 address, port number, and VRF name:

switch(config)#aaa group server radius sg3switch(config-sg)#服务器1.1.1.5 tls阿宝rt 12 vrf mgmt

Adding a server to RADIUS server group sg4 by providing an IPv6 address and default VRF:

switch(config)#aaa group server radius sg4switch(config-sg)#server 2001:0db8:85a3:0000:0000:8a2e:0371:7334 vrf default

Adding a server to RADIUS server group sg4 by providing an IPv4 address, port number, and VRF name:

switch(config)#aaa group server radius sg4switch(config-sg)#server 1.1.1.6 port 32 vrf vrf_red

Specifying an IPv4 address when removing a TACACS+ server from server group sg1:

switch(config)#aaa group server tacacs sg1switch(config-sg)#no server 1.1.1.2 tls port 12 vrf mgmt

Specifying an IPv6 address when removing a TACACS+ server from server group sg2 with the default VRF:

switch(config)#aaa group server tacacs sg2switch(config-sg)#no server 2001:0db8:85a3:0000:0000:8a2e:0370:7334 vrf default