Fortinet black logo

Administration Guide

Example configuration

Copy Link
Copy Doc ID d887c3dd-ee67-11ec-bb32-fa163e15d75b:701016
Download PDF

The following is an example configuration of a TACACS+ user account, with the CLI syntax shown to create it:

  1. Configuring a TACACS user account for login authentication:

    config user tacacs+

    edit tacserver

    set authen-type ascii

    set authorization enable

    set key temporary

    set server tacacs_server

    end

  2. Configuring a TACACS+user group:

    config user group

    edit tacgroup

    set member tacserver

    config match

    edit 1

    set server-name tacserver

    set group-name tacgroup

    end

    end

    end

    end

  3. Configuring a TACACS+ system admin user account:

    config system admin

    edit tacuser

    set remote-auth enable

    set wildcard enable

    set remote-group tacgroup

    set accprofile noaccess

    end

    end

The following is an example configuration of a TACACS+ user account, with the CLI syntax shown to create it:

  1. Configuring a TACACS user account for login authentication:

    config user tacacs+

    edit tacserver

    set authen-type ascii

    set authorization enable

    set key temporary

    set server tacacs_server

    end

  2. Configuring a TACACS+user group:

    config user group

    edit tacgroup

    set member tacserver

    config match

    edit 1

    set server-name tacserver

    set group-name tacgroup

    end

    end

    end

    end

  3. Configuring a TACACS+ system admin user account:

    config system admin

    edit tacuser

    set remote-auth enable

    set wildcard enable

    set remote-group tacgroup

    set accprofile noaccess

    end

    end