Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
763
Views
0
Helpful
3
Replies

ACS authorization fail

anandkumar.cisco
Level 1
Level 1

‎05-04-2010 06:31 AM - edited ‎03-10-2019 05:06 PM

dear all,


When i am accessing one of my aaa client ,
which is getting authenticated from ACS Server 4.2


it is showinng as Authorization failure , what could be the issue

configuration on device &server side is proper

Labels:
0 Helpful
3 Replies 3

Panos Kampanakis
Cisco Employee
Cisco Employee

‎05-04-2010 08:45 AM

Check if the client device is doing aaa authorization or command authorization and if the user logging in does not have the privileges.

I hope it helps.

PK

0 Helpful

kush.sri86
Level 1
Level 1

‎05-06-2010 11:43 PM

Hi,

Could you provide the aaa config part from the device? Along with this, please mention the protocol which you are using (Radius/Tacacs)?

If you are using Tacacs, make sure under the group setup, you have checked "shell" and under the privilege level, entered the privilege level which the user should be assigned.

Hope this helps

Kush

0 Helpful

Kent Heide
Level 1
Level 1

‎05-07-2010 12:48 PM

When you are saying you are accessing one of your AAA clients I am assuming you are trying to login to a device via either TACACS+ or radius. Authorization fail most likely means that the user you are trying to log in with failed to start the exec shell. Check your AAA logs for clarification as to why.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents