Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1196
Views
0
Helpful
3
Replies

ACS 5.1 is refusing to use the Enable Password!

hamadfaisal
Level 1
Level 1

‎12-22-2012 08:42 AM - edited ‎03-12-2019 05:41 PM

Hay there

I have this irritating problem

I have migrated my ACS data from 4.1 to 5.1 and everything is working fine

to test the connection I have configured a switch to get the authentication from the new Tacacs server,

using my old username and password..

i got in perfectly

but when the switch asked my for enable which is the same password, it refused the password!

(I have unchecked the <use a different password for enable> option)

I deleted my switch from the Tacacs to enter locally, I went in with no problems!!

i thought that the problem may be from the old configuration ..

so I created a new username and password to check, and the problem still exist..

I had everything in my mind tried out,, and now am out of ideas

please i need your brains to give me something 

I really appreciate the help,,

1 person had this problem
Labels:
0 Helpful
3 Replies 3

Gurpreet Puri
Level 1
Level 1

‎12-24-2012 12:38 AM

Hi Hamad,

Could you please share the ACS configuration you did on Switch.

Regards,
Gurpreet S Puri

****************************
Keep Smiling, Peace :)
****************************

(Please Rate Helpful Post)

Regards, Gurpreet S Puri **************************** Keep Smiling, Peace :) **************************** (Please Rate Helpful Post)
0 Helpful

hamadfaisal
Level 1
Level 1
In response to Gurpreet Puri

‎12-25-2012 03:08 AM

hay there

i really dont think the configuration on the switch is the problem

since its the same config i used on all the switches talking with the ACS 4.1

here you go,,

and thanks in advance

********************************************************

username XXX privilege 15 password XX

tacacs-server host 10.0.1.96

tacacs-server host 10.0.1.224

tacacs-server host 10.6.12.12

tacacs-server host 10.6.12.13

tacacs-server key XXXXXXX

aaa new-model

aaa authentication fail-message ^CUsername or Password is not correct^C

aaa authentication login default group tacacs+ local

aaa authentication enable default group tacacs+ enable

aaa authorization config-commands

aaa authorization commands 1 default group tacacs+ local

aaa authorization commands 15 default group tacacs+ local

aaa accounting send stop-record authentication failure

aaa accounting commands 1 default start-stop group tacacs+

aaa accounting commands 15 default start-stop group tacacs+

***********************************************************

0 Helpful

Daniel Mansilla
Level 1
Level 1

‎05-07-2015 01:36 PM

Hi hamadfaisal

I have the same problem after migrate from 4.1 to 5.6. When I try login in enable mode recived error and in the ACS login appear the next message:

13029 Requested privilege level too high

Do you have any solution for this issue?

 

I will be waiting you reply, thanks.

 

Daniel 

0 Helpful
Customers Also Viewed These Support Documents