In a router, if you configure tacacs-server host tacacs-1 tacacs-2, this is how you set up ACS redundancy. My question is, how does router check the pulse of each tacacs server? By ping or some other keepalive mechanism? What does this command really do behind the scene?
What happen in our environment is that tacacs-1 services within Windows keep on stopping by itself. We can't authenticate and the tacacs service does not fail over to tacacs-2.
Thanks for the reply. Looking at the command documentation, it states:
"If the command is not configured, the timeout interval is 5 seconds."
So it is default configured regardless I enter this command or not. However, this command does not work as TACACS service does not fail over. Any other idea?
This command is not default configured in cisco swithces the default parameter is 5 sec if you configure tacas server timeout only without sepcifying the time in sec.