cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1012
Views
0
Helpful
5
Replies

authorisation failed inACS 4.2

SELOMECIS
Level 1
Level 1

I installed ACS 4.2,ANYTIME I try to login to the router it ask me the enable password and give autho failed in the acs log,can somebody help pls. sample of the configuration I put in the Router:

5 Replies 5

Jatin Katyal
Cisco Employee
Cisco Employee

Hi,

I went through the config attached and I can see you have exec authorization enabled.

On ACS, make sure that under Group user Shell(exec) is checked, Privilege Level is checked, and that value is 15.

HTH

JK

~Jatin

Yes I have checked under group user shell and put 15 for the privile but still,so do u want me to desaeble the exec enable.

Hi,

well, If you want to use exec authorization then lets troubleshoot.

Did you get a chance to see acs failed authentication?

Please let me know so that we can further investigate.

HTH

JK

~Jatin

Thank you very much,the proble is solve it was what u told me about privile 15,I did not choose (Shell (exec) ) before the 15 so anytime I submitted it.it does not save it,so now everthing is ok,thanks very much.

Hi,

Please remove this command

aaa authentication login admin group tacacs+ local

We already have default defined in the config, so need for any method list.

You have couple of method list defined and have not provided the complete show run. Please provide show run.

Also disable single connect if enabled and provide tacacs source interface.

What do you see if failed and passed attempts logs in acs?

Regards,

~JG

Do rate helpful posts