Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
4971
Views
2
Helpful
4
Replies

AAA Configuration on ISE

CSCO11704570
Level 1
Level 1

‎08-23-2017 03:38 AM

Dears in Community

I have configured AAA in ISE 2.2. but I am receiving error of 13036 error message (selected shell profile is deny access) when it is authenticated in live logs.

Regards

4 Replies 4

paul
Level 10
Level 10

‎08-23-2017 05:19 AM

You would need to post a screen shot of your policy set and the details of the authentication hitting the Deny Access.  It sounds like your rules aren't configured correctly and you aren't hitting the rule you expect.

Mohammed al Baqari
Level 11
Level 11

‎08-23-2017 08:48 PM

Hi,

Along with the policy, I think you need to share your debug radius authen from NAD to match the sent attributes against the policy set.

0 Helpful

ognyan.totev
Level 5
Level 5

‎08-23-2017 11:16 PM

Hello , go to Device administration -> policy elements >results >Tacacs command sets > create new command set like

permit all commands

Command Set
  
  

  
  

  

  

Commands

  
  
Tick the box and apply in sets and let us see what u configure in tripple AAA model in switch

0 Helpful

hslai
Cisco Employee
Cisco Employee

‎08-28-2017 03:00 PM

Adding to the other comments, please check out the guides @ Device Administration (TACACS+)

0 Helpful
Customers Also Viewed These Support Documents