Cisco Certified Network Associate (CCNA) 2025 – 400 Free Practice Questions to Pass the Exam

The command "tacacs-server host" is the correct choice for configuring a TACACS (Terminal Access Controller Access-Control System) server host on a Cisco device. This command is specifically designed to establish a connection between the Cisco device and the TACACS server, allowing for centralized authentication, authorization, and accounting for users accessing network devices.

When using this command, you typically specify the IP address or hostname of the TACACS server, making it easy for the device to communicate with the server. Configuring a TACACS server is important in environments where security policies require that authentication be managed by a dedicated server, providing a higher level of control and management over user access.

Other options serve different purposes: “aaa authentication” is used for defining authentication methods, “logging host” is for configuring remote logging to a syslog server, and “ip http secure-server” enables HTTPS on the device for secure access to the web interface. Each of these commands addresses distinct functions in network device configuration, but they do not specifically relate to setting up a TACACS server host.