Re: authorisation failed inACS 4.2

SELOMECIS · ‎10-01-2009

I installed ACS 4.2,ANYTIME I try to login to the router it ask me the enable password and give autho failed in the acs log,can somebody help pls. sample of the configuration I put in the Router:

Jatin Katyal · ‎10-01-2009

Hi,

I went through the config attached and I can see you have exec authorization enabled.

On ACS, make sure that under Group user Shell(exec) is checked, Privilege Level is checked, and that value is 15.

HTH

JK

~Jatin

SELOMECIS · ‎10-04-2009

Yes I have checked under group user shell and put 15 for the privile but still,so do u want me to desaeble the exec enable.

Jatin Katyal · ‎10-05-2009

Hi,

well, If you want to use exec authorization then lets troubleshoot.

Did you get a chance to see acs failed authentication?

Please let me know so that we can further investigate.

HTH

JK

~Jatin

SELOMECIS · ‎10-06-2009

Thank you very much,the proble is solve it was what u told me about privile 15,I did not choose (Shell (exec) ) before the 15 so anytime I submitted it.it does not save it,so now everthing is ok,thanks very much.

Jagdeep Gambhir · ‎10-05-2009

Hi,

Please remove this command

aaa authentication login admin group tacacs+ local

We already have default defined in the config, so need for any method list.

You have couple of method list defined and have not provided the complete show run. Please provide show run.

Also disable single connect if enabled and provide tacacs source interface.

What do you see if failed and passed attempts logs in acs?

Regards,

~JG

Do rate helpful posts