Skip to content
Any configuration changes made locally on the switch won't be synchronized with Sophos Central. We recommend making changes from the Sophos Central control panel instead.

Page permalink

Always use the following permalink when referencing this page. It will remain unchanged in future help versions.

https://docs.sophos.com/nsg/switch/help/en-us/index.html?contextId=switch-security-tacacs-server

Tacacs+ server

Terminal Access Controller Access Control (TACACS+) Server provides centralized authentication for network access. TACACS+ is used primarily for the administration of network devices.

To add a TACACS+ server to your switch, do as follows:

  1. Go to Security > TACACS+ Server.
  2. Click Add.

  3. Enter the following information.

    Option Description
    Server IP The IP address of the TACACS+ server.
    Priority Enter the priority of the TACACS+ server. The priority determines which server is contacted first for authentication when you have more than one TACACS+ server.
    Authorized port Enter the port that the server communicates on for authentication. The default port is 49.
    Key string Enter the encryption key that's configured on your TACACS+ server. This must match your TACACS+ server exactly.
    Timeout Enter the timeout in seconds. The default is 5. The timeout specifies the time that Sophos Switch waits for an authentication response before trying the next TACACS+ server in the list.

  4. Click Apply.