Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
447
Views
0
Helpful
1
Replies

AAA on 6513

satishcp
Level 1
Level 1

‎12-17-2006 09:44 PM - edited ‎03-10-2019 02:53 PM

Guys,

The following configuration for authentication and authorization doesn't work on 6513 alone. But same configuration is working on 100+ CAT switches. I have verified that ACS server is reachable from 6513 and entry is available for 6513 on ACS server. Interestingly no entries for failures in logs (6513 / ACS)! Is something missing in the config?

aaa new-model

aaa group server tacacs+ name1

server ACSserver1

server ACSserver2

!

aaa authentication login default group name1 local

aaa authentication enable default group name1 enable

aaa authorization exec default group name1 if-authenticated

ip http authentication aaa

tacacs-server host ACSserver1

tacacs-server host ACSserver2

no tacacs-server directed-request

tacacs-server key xxxxx

Appreciate help,

-Satishcp

Labels:
0 Helpful
1 Reply 1

Vivek Santuka
Cisco Employee
Cisco Employee

‎12-18-2006 11:44 AM

Hi,

The aaa config looks good but is the Switch able to resolve the names ?

I guess we need aaa authentication and tacacs debugs to see whats going on.

Regards,

Vivek

0 Helpful
Customers Also Viewed These Support Documents