08-06-2018 03:51 PM - edited 02-21-2020 08:03 AM
Hello,
I've configured aaa & TACACS+ on an ASA properly where the primary authentication method is ISE and a fallback method is local. I've created enable_15 with priv 15 and another local user account (admin_acct) with priv 15, also. I can ssh using my AD account just fine and when I tried to console in and use the local account (admin_acct) and I was able to login fine. However, it seems that this local user account (admin_acct) doesn't have the proper authorization to execute any priv commands and now I am locked out on the console since I cannot issue any commands nor can I even logout. Is there any command or method that i can exit out of this cosole session so I can log back in using a different user account?
Any ideas would be appreciated.
Best, ~zK
08-06-2018 08:04 PM
08-10-2018 03:15 PM
Thanks for your input.
I was able to resolve the issue by creating the same local user account on the TACACS+ server (ISE).
Thanks, ~zK
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide