DGS-3710 Series Layer 2 Managed Gigabit Switch CLI Reference Guide
80
Format
create authen server_host <ipaddr> protocol [tacacs | xtacacs | tacacs+ | radius] {port <int
1-65535> | key [<key_string 254> | none] | timeout <int 1-255> | retransmit <int 1-20>}
Parameters
<ipaddr>
- Specifies the server host’s IP address.
protocol
- Specifies the server host’s type of authentication protocol.
tacacs
- Specifies the server host’s authentication protocol TACACS.
xtacacs
- Specifies the server host’s authentication protocol XTACACS.
tacacs+
- Specifies the server host’s authentication protocol TACACS+.
radius
- Specifies the server host’s authentication protocol RADIUS.
port
- (Optional) Specifies the port number of the authentication protocol for the server host. The
default value for TACACS/XTACACS/TACACS+ is 49. The default value for RADIUS is 1812.
<int 1-65535>
- Specifies the port number of the authentication protocol for the server host.
The default value for TACACS/XTACACS/TACACS+ is 49. The default value for RADIUS
is 1812. The port number must be between 1 and 65535.
key
- (Optional) Specifies the key for TACACS+ and RADIUS authentication.
<key_string 254>
- Specifies the key for TACACS+ and RADIUS authenticaiton. If the value
is null, no encryption will apply. This value is meaningless for TACACS and XTACACS.
none
- No encryption for TACACS+ and RADIUS authenticaiton. This value is meaningless
for TACACS and XTACACS.
timeout
- (Optional) Specifies the time in seconds for waiting for a server reply. The default value
is 5 seconds.
<int 1-255>
- Specifies the time in seconds for waiting for a server reply. The default value is 5
seconds. The timeout value must be between 1 and 255 seconds.
retransmit
- (Optional) Specifies the count for re-transmit. This value is meaningless for
TACACS+. The default value is 2.
<int 1-20>
- Specifies the count for re-transmit. This value is meaningless for TACACS+. The
default value is 2. The re-transmit value must be between 1 and 20.
Restrictions
Only Administrator-level users can issue this command.
Example
To create a TACACS+ authentication server host with a listening port number of 15555 and a
timeout value of 10 seconds:
DGS-3710-12C:admin#create authen server_host 10.1.1.222 protocol tacacs+ port
15555 timeout 10
Command: create authen server_host 10.1.1.222 protocol tacacs+ port 15555
timeout 10
Key is empty for TACACS+ or RADIUS.
Success.
DGS-3710-12C:admin#