This chapter is from the book
This chapter is from the book
This chapter is from the book
Review Questions
1. In implementing the TACACS+ protocol, which port is used for communication between a network device and a TACACS+ server?
A. UDP port 1645
B. TCP port 49
C. TCP port 389
D. UDP port 1813
2. In TACACS+ implementation, which of the following can serve as network access servers?
A. Routers
B. Switches
C. Access points
D. All of the above
3. Which of the following commands is used for configuring a vty line to use the method list name list1?
A. aaa authentication
B. aaa authorization
C. login authentication list1
D. aaa new-model
4. To add a TACACS+ server in IOS 15.x, what command follows tacacs server name if the IP address is 10.10.10.10?
A. aaa tacacs 10.10.10.10
B. server 10.10.10.10
C. address ipv4 10.10.10.10
D. aaa server 10.10.10.10
Answers to Review Questions
1. B is correct. The TACACS+ protocol uses TCP port 49 for communication between a TACACS+ client (network device) and a TACACS+ server.
2. D is correct. The clients of a TACACS+ server is referred to as a network access server (NAS). A NAS may be a router, a switch, or an access point.
3. C is correct. A method list enables logic authentication. To apply a custom list to a line, you use login authentication custom-list name in line configuration mode.
4. C is correct. To add a TACACS+ server in IOS 15.x, you need to specify the TACACS+ server name, specify the server IP address with the address ipv4 ip address command (address ipv4 10.10.10.10 in this case), and then specify the key string.