I'm having a problem getting in SDM through tacacs (acs 3.3) Logging in via CLI (tacacs) works fine. When i put http authentication to local all works fine, I'm using the following sttings:
!
aaa authentication login default group tacacs+ local
aaa authentication enable default group tacacs+ enable
aaa authentication ppp default group tacacs+ local
aaa authorization exec default group tacacs+ local
aaa authorization commands 0 default group tacacs+ local
aaa authorization commands 15 default group tacacs+ local
aaa authorization network default group tacacs+ local
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 0 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
aaa accounting network default start-stop group tacacs+
aaa accounting connection default start-stop group tacacs+
aaa accounting system default start-stop group tacacs+
!
!
ip http authentication aaa login-authentication default
ip http secure-server
!
!
tacacs-server host x.x.x.x
tacacs-server directed-request
tacacs-server key XXXXXX
!
debug tacacs gives me the following when i'm trying to log into sdm --> included in the attachment
according to the output
user authentication (login/pass) goes fine
In tacacs i'm not getting any useful logging (no failed attempts, no accounting or administration output)
acs usersettings:
advanced tacacs+ settings:
max privilige = 15
tacacs+ settings:
shell exec = checked
googling and searching for 2 days now, but no luck yet
any help would be greatly appreciated!
gr,
Dennis
