Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2738
Views
0
Helpful
7
Replies

Cisco ASA- ACS 4.2

Go to solution
alkabeer80
Level 1
Level 1

‎05-02-2012 10:23 PM - edited ‎03-10-2019 07:03 PM

Hi,

I have cisco asa 5580 software 8.2, transparent, multicontext. i am trying to add the context to ACS 4.2.

i have added the device name and ip to ACS

and use the following commands on ASA

aaa-server ACSSRV protocol tacacs+

aaa-server ACSSRV (management) host x.x.x.x

key hello

aaa authentication serial console ACSSRV LOCAL

aaa authentication enable console ACSSRV LOCAL

aaa authentication ssh console ACSSRV LOCAL

aaa authentication http console ACSSRV LOCAL

ssh to device ask for username and password which i passed normally, type enable it ask for password.

i put the same password it wont work i used local password it is not working, what should i do ????

thankssssssssssssssssss

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions
7 Replies 7

Go to solution
alkabeer80
Level 1
Level 1

‎05-05-2012 12:51 AM

hi guys anyone can help in this ???

0 Helpful

Go to solution
wimalathas nishan
Level 1
Level 1
In response to alkabeer80

‎05-06-2012 09:26 AM

acs box check the fail log. If max session

Step 1 In the navigation bar, click Group Setup.

The Group Setup Select page opens.

Step 2 From the Group list, select a group, and then click Edit Settings.

The name of the group appears at the top of the Group Settings page.

Step 3 In the Max Sessions table, under Sessions available to group, select one of the following options:

•Unlimited—Allows this group an unlimited number of simultaneous sessions. (This action effectively disables Max Sessions.)

•n—Type the maximum number of simultaneous sessions to allow this group.

Step 4 In the lower portion of the Max Sessions table, under Sessions available to users of this group, select one of the following two options:

•Unlimited—Allows each individual in this group an unlimited number of simultaneous sessions. (This action effectively disables Max Sessions.)

•n—Type the maximum number of simultaneous sessions to allow each user in this group.

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.0/user/guide/g.html

Sent from Cisco Technical Support iPad App

0 Helpful

Go to solution
alkabeer80
Level 1
Level 1
In response to wimalathas nishan

‎05-06-2012 08:47 PM

Hi nishan,

all of the config u mentioned is there, plz check below screenshot

i did debug aaa for ASA from console connection, i got "Restting 10.1.1.1 numtries" (10.1.1.1 is the IP of tacacs server)

0 Helpful

Go to solution
alkabeer80
Level 1
Level 1
In response to alkabeer80

‎05-09-2012 05:07 AM

any help ???

0 Helpful

Go to solution
maldehne
Cisco Employee
Cisco Employee
In response to alkabeer80

‎05-14-2012 12:09 AM

Under the user settings there is an option to specify against what to check the enable password

either using the same pap password defined for the user account or spearate one or another defined on external

database.

Check this link and let me know how it goes and what do you have:

http://www.cisco.com/en/US/partner/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2/user/guide/UsrMgt.html#wp273989

If it is still  filing what is the reason for failure in the failed attempts

0 Helpful

Go to solution
alkabeer80
Level 1
Level 1
In response to maldehne

‎05-14-2012 03:28 AM

thx for the reply, the URL is broken i can't access it

0 Helpful
Customers Also Viewed These Support Documents