Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
545
Views
0
Helpful
1
Replies

AAA config for PIX

sikkander
Level 1
Level 1

‎05-06-2005 06:23 AM - edited ‎03-10-2019 02:08 PM

Hello folks!!!

In my PIX 515E I hv configured AAA configuration(tacacs+) & hv also configured serial console authentication as "local" & telnet console authentication from tacacs+ server.Apart from this I hv also configured authorization as "tacacs+" server.Now if AAA server is not available Iam able to go in to user mode with the "enable pwd" set in PIX but if I try to go into enable mode it gives error msg "AAA command authorization failed" since it looks for AAA server for authorization & that is not available.Is there a way by which I can overcome this by configuring "local" authorization as a fallback incase the AAA server is not available

Cheers

SS

Labels:
0 Helpful
1 Reply 1

ebreniz
Level 6
Level 6

‎05-12-2005 07:16 AM

You can add a command like this

aaa authentication login default tacacs local

aaa authentication login CONSOLE local

So if Tacacs fail local will take over.

http://www.cisco.com/en/US/tech/tk59/technologies_tech_note09186a0080093c81.shtml#login_auth

0 Helpful
Customers Also Viewed These Support Documents