You issue the following commands on a Cisco router:
tacacsserver host ts1 timeout 30 tacacsserver timeout 20
Which of the following is true about how the Cisco router communicates with the TACACS+ server? (Select the
best answer.)
A.
The router will maintain an open TCP connection.
B.
The router will maintain an open TCP connection for no more than 20 seconds.
C.
The router will wait 20 seconds for the server to reply before declaring an error.
D.
The router will wait 30 seconds for the server to reply before declaring an error.
Explanation:
The router will wait 30 seconds for the server to reply before declaring an error. The tacacsserver host ts1
timeout 30 command in this scenario configures a router to connect to a Terminal Access Controller Access
Control System Plus (TACACS+) server named ts1. The timeout 30 keyword in this command configures the
router to wait 30 seconds for the server to reply before declaring an error.
The router will wait 30 seconds, not 20 seconds, for the server to reply before declaring an error. If the timeout
30 keyword had not been specified in this scenario, the tacacsserver timeout 20 command would have
configured the router to wait 20 seconds for the server to reply before declaring an error. The timeout 30
keyword in this scenario overrides the value assigned by the tacacsserver timeout command.
The router will not maintain an open Transmission Control Protocol (TCP) connection, because the
singleconnection keyword has not been issued in this scenario. The singleconnection keyword configures the
router to maintain an open connection to the TACACS+ server. When the singleconnection keyword is not
configured, a Cisco router will open and close a TCP connection to the TACACS+ server each time it needs to
perform an operation. When the singleconnection keyword is configured, the router connects to the TACACS+
server and maintains that connection even when it is not performing an operation. This setting enhances the
efficiency of the communications between the router and the TACACS+ server because the router does not
have to constantly close and open connections.Cisco: Configuring TACACS+: Identifying the TACACS+ Server Host