Configuring TACACS+ authentication

TACACS+ configuration example

The following NSP configuration example shows typical parameter settings for enabling TACACS+ user authentication.

Note: The configuration is an example only; you must customize the parameters using the values specific to your TACACS+ servers.

tacacs:

  enabled: true

  address: "tacacs1.example.com,203.0.113.37:49"

  secret: "secret"

  protocol: "PAP"

  timeout: 7000

  defaultGroup: ""

  vsaEnabled: true

  roleVsaId: "VSA_search_role"

  vsaServiceId: "VSA_search_service"