cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
826
Views
0
Helpful
1
Replies

Password Aging and RSA Securid Token Server

gerardwest
Level 1
Level 1

With password aging policies implemented why would my account on our ACS (v 3.2) be listed as disabled because "This user's passwords have expired" if I use a RSA Securid Token Server for password authentication and the TACACS+ Enable Password? I can still login with the approriate privilege to our routers and switches.

1 Reply 1

umedryk
Level 5
Level 5

The problem with using the is that the router looks locally for a pool named AUX and when it does not find one - it will then try to download a pool from the TACACS+ server using the name of the router. However, if you were to change the line to this should not matter. Change this command and see if it works.