01-08-2025 12:23 AM
■Equipment Information
Model number: Cisco WS-C2960-24-S
OS: 12.2(55)SE7
■config
aaa group server tacacs+ TEST
server 10.10.10.76
server 10.10.10.77
!
aaa authentication login default group TEST local
aaa authentication enable default group TEST enable
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 0 default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
~~~~~~~~~~~
tacacs-server host 10.10.10.76 single-connection key 7 01234567891012
tacacs-server host 10.10.10.77 single-connection key 7 01234567891012
tacacs-server directed-request
■Event
Suddenly, remote connection (ssh, Telnet) from Teraterm is not available.
There is no other equipment failure.
There is a ping response, and the terminal connected to the SW can communicate.
Other devices (same device, same configuration, same OS) can be logged in.
When I try to connect via ssh, it asks for ID and password, which I enter, but it asks me to re-enter the password.
Telnet returns only a banner, not “username:”, and I cannot enter anything.
When I try to reboot the device as an emergency measure, it becomes possible to log in.
→However, the same problem is occurring on multiple devices, and there is a limit to how long we can keep rebooting,
I would appreciate any solutions or bug information you can provide.
Translated with DeepL.com (free version)
Solved! Go to Solution.
01-09-2025 05:34 PM
Ping to tacacs server was confirmed. This phenomenon was also observed on other equipment (different location) and was resolved when the equipment was replaced.
Is this the subject of the following bug?
Cisco Bug: CSCsw79561 - DROPACCTFAIL: System Accounting fails with tacacs
01-08-2025 01:52 AM
During the failure, did you check If they tacacs request is getting to the tacacs server and there are response?
If this is happening to Multiplus device you need to look the whole network and not only the switch
01-09-2025 04:08 PM
I was checking the Tacacs server logs and no requests were received.
01-09-2025 05:19 PM
Make sure you have connectivity with tacacs server or if you dont have some firewall in the middle blocking the tacacs traffic.
01-09-2025 05:34 PM
Ping to tacacs server was confirmed. This phenomenon was also observed on other equipment (different location) and was resolved when the equipment was replaced.
Is this the subject of the following bug?
Cisco Bug: CSCsw79561 - DROPACCTFAIL: System Accounting fails with tacacs
01-09-2025 05:41 PM
If connectivity is not a problem, the bug can definitelly explain the problem.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide