Wired Intelligent Edge (Campus Switching and Routing)

 View Only
last person joined: one year ago 

Bring performance and reliability to your network with the HPE Aruba Networking Core, Aggregation, and Access layer switches. Discuss the latest features and functionality of HPE Aruba Networking switching devices, and find ways to improve security across your network.
Back to Library

How to set the source IP address for TACACS configuration? 

Mar 25, 2017 12:14 AM

Requirement:

MAS switch / stack running 7.4 and above.

 



Solution:

 

We can set the source interface for TACACS in two ways:

 

a. Globally.

b. Per TACACS server config.

 

When both of the above are configured, the switch will use the one configured on respective server config.



Configuration:

 

Let us verify the default settings:

(ArubaS3500-24P-US) #show ip tacacs source-interface

Global TACACS source interface:
            vlan: 0
              ip: 0.0.0.0
        loopback: disabled

Per-server client source IP addresses:

 

Let us configure it globally:


(ArubaS3500-24P-US) (config) #ip tacacs source-interface vlan 1

 

Now let us configure it per TACACS server:


(ArubaS3500-24P-US) (config) # aaa authentication-server tacacs test
(ArubaS3500-24P-US) (TACACS Server "test") #source-interface vlan 2
(ArubaS3500-24P-US) (TACACS Server "test") #exit

 

 

 



Verification
(ArubaS3500-24P-US) #show ip tacacs source-interface

Global TACACS source interface:
            vlan: 1
              ip: 10.17.171.2
        loopback: disabled

Per-server client source IP addresses:
        Server "test":  vlan 2, IP 10.150.2.2

 

Statistics
0 Favorited
6 Views
0 Files
0 Shares
0 Downloads

Related Entries and Links

No Related Resource entered.