11-14-2019 02:39 AM
Hello Team,
I have a Cisco Nexus 5k switch. Currently I have AAA configuration as below :
aaa group server tacacs+ ACS_Server
aaa authentication login default group ACS_Server local
aaa authentication login console local
aaa authorization config-commands default group ACS_Server local
aaa authorization commands default group ACS_Server local
aaa accounting default group ACS_Server local
Now my aim is to be change the TACACS+ authentication from ACS to ISE.
To facilitate this, I will login via Console, modify the ACS_Server IP address to Cisco ISE IP address. Rest configuration will remain as it is.
Now my question is : Is there a possibility that I can get locked out using the Console login?
11-14-2019 03:46 AM
11-14-2019 04:31 AM
11-14-2019 08:01 AM
11-15-2019 01:06 AM
aaa new-model
aaa authentication login NO-Auth none
line con 0
login authentication NO-Auth
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide