I have a PIX 515E. I've set it up so that console telnet access is authenticated by TATACS+ ( Cisco ACS ). How can I further set it up so that if the TACACS+ server is not available, It will resort back to Pix's local authentication (Username and password defined by "username" command on PIX)?
If the AAA server is down, you can access the PIX by entering the Telnet password initially, then pix for the username, and then the enable password (enable password whatever) for the password. If enable password whatever is not in the PIX configuration, enter pix for the username and press Enter. If the enable password is set but not known, you will need a password recovery disk to reset the password.