Hello.
I'm using this configuration for commands accounting with Cisco Secure ACS. When the first server fails, the second AAA server doesn't report any accounting records in T+ Administration, using the broadcast keyword also.
Many thanks for suggestions.
Regards.
Andrea
!
aaa new-model
!
!
aaa group server tacacs+ CiscoSecureACS
server 10.4.44.74
server 10.4.44.75
!
aaa authentication login default group CiscoSecureACS local
aaa authentication enable default group CiscoSecureACS enable
aaa authorization console
aaa authorization config-commands
aaa authorization exec default group CiscoSecureACS local
aaa accounting send stop-record authentication failure
aaa accounting exec default start-stop group CiscoSecureACS
aaa accounting commands 15 default start-stop group CiscoSecureACS
aaa accounting connection default start-stop group CiscoSecureACS
!
tacacs-server host 10.4.44.74 single-connection timeout 5
tacacs-server host 10.4.44.75 single-connection timeout 5
tacacs-server directed-request
!