Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
682
Views
0
Helpful
4
Replies

CCS 11506 Tacacs Source Interface.

tonysong
Level 1
Level 1

‎01-15-2007 12:48 PM

Hi,

We have 4 CSS 11506 and 2 Tacacs servers.

2 CSS with same ios version but behaves different. 1 talks to the ACS server via the management interface and the other talks with ACS server via the circuit interface. Are there any command like that on the Cisco routers to define the Tacacs source Interface?

Thanks!

Tony

Labels:
0 Helpful
4 Replies 4

Gilles Dufour
Cisco Employee
Cisco Employee

‎01-16-2007 01:28 AM

it depends on your routing table.

The CSS will select automatically the exit interface ip address as source.

There is no command to chose the interface.

Gilles.

0 Helpful

d-fillmore
Level 2
Level 2
In response to Gilles Dufour

‎05-09-2007 02:07 AM

In the past, TACACS was not a routable protocol over the management interface.

Has this changed? Can we now route TACACS packets to and from the server over the management interface?

Cheers, Dom

0 Helpful

danmuril
Cisco Employee
Cisco Employee
In response to d-fillmore

‎05-15-2007 03:45 PM

Tony,

The behavior you mention has not changed for TACACS.

0 Helpful

j.poley
Level 1
Level 1

‎05-21-2007 01:10 PM

We typically use a loopback address for TACACS communication. Then any single failed interface will not interfere with communications back to TACACS.

Here is the command...

ip tacacs source-interface Loopback0

JDP

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card