Wired Intelligent Edge (Campus Switching and Routing)

 View Only
last person joined: one year ago 

Bring performance and reliability to your network with the HPE Aruba Networking Core, Aggregation, and Access layer switches. Discuss the latest features and functionality of HPE Aruba Networking switching devices, and find ways to improve security across your network.
Back to Library

How can we specify TACACS source interface on a MAS? 

May 18, 2016 04:17 PM

Q:

1. What is the default source IP address for a TACACS request?

2. How can we change the it?

 



A:

1. Default source IP address in a TACACS request is the VLAN IP address used by MAS to reach the switch. This is decided by the routing table. Thus it can change if vlan goes down etc.

2. We can change it to a fixed address using following command:

(ArubaS2500-24P) (config) #aaa authentication-server tacacs new

(ArubaS2500-24P) (TACACS Server "new") #source-interface ?
loopback                Use IP address of the loopback
vlan                    Select VLAN of outgoing TACACS requests to this
                        server

We can set it to loopback or any vlan IP address.

3. This is supported in versions Aruba OS 7.4.1 and above.

Statistics
0 Favorited
0 Views
0 Files
0 Shares
0 Downloads

Related Entries and Links

No Related Resource entered.