set administrators tacacs-auth

In the R81.10.X releases, this command is available starting from the R81.10.05 version.

Description

Configures the TACACS+ authentication for administrators.

Note - You must configure the applicable TACACS+ server. See Configuring TACACS+ Servers.

Syntax

set administrators tacacs-auth enable use-tacacs-roles true

set administrators tacacs-auth enable use-tacacs-roles false [ permission <Administrator Role> ]

set administrators tacacs-auth disable

Parameters

Parameter	Description
tacacs-auth	Enables (`enable`) or Disables (`disable`) the TACACS+ authentication for administrators.
use-tacacs-roles	Specifies which TACACS+ roles to use: `true` - Use roles defined on the TACACS+ server (this is the default). `false` - Use default roles for TACACS+ users (predefined on the appliance). Use the "`permission`" parameter to specify the predefined role.
permission	Specifies the default Administrator Role (when the value of the parameter "`use-tacacs-roles`" is "`false`"): `read-write` - Super Administrator (this is the default). `networking` - Networking Administrator. `access-policy` - Access Policy Administrator. `readonly` - Read-Only Administrator. `mobile` - Mobile Administrator.

Parameter

Description

tacacs-auth

Enables (enable) or Disables (disable) the TACACS+ authentication for administrators.

use-tacacs-roles

Specifies which TACACS+ roles to use:

true - Use roles defined on the TACACS+ server (this is the default).
false - Use default roles for TACACS+ users (predefined on the appliance).

Use the "permission" parameter to specify the predefined role.

permission

Specifies the default Administrator Role (when the value of the parameter "use-tacacs-roles" is "false"):

Example Command

set administrators radius-auth enable use-radius-roles false permission mobile