05-03-2018 05:09 AM - edited 02-21-2020 10:55 AM
I am hoping to get some help as to why my local user account does not work if I remove the TACACS server IP's as a test. It is a 6513 running cat6000-sup720k9.8-6-6 code. Below are the commands I currently have on the switch. Any suggestions would be great. Thanks. ts
#authentication
set authentication login tacacs enable console primary
set authentication login tacacs enable telnet primary
set authentication login tacacs enable http primary
!
#authorization
set authorization enable enable tacacs+ none telnet
!
set tacacs server 10.12.202.70 primary
set tacacs server 10.12.194.70
set tacacs key **************
#Local User
set localuser user TESTuser password **************** privilege 15
Solved! Go to Solution.
05-11-2018 05:10 AM
I got the answer from the below post.
https://supportforums.cisco.com/t5/getting-started-with-lans/catos-individual-user-id-s/td-p/418611
set localuser authentication enable
This allowed me to log in with my local user account when TACACS was unavailable.
05-11-2018 05:10 AM
I got the answer from the below post.
https://supportforums.cisco.com/t5/getting-started-with-lans/catos-individual-user-id-s/td-p/418611
set localuser authentication enable
This allowed me to log in with my local user account when TACACS was unavailable.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide