Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
9122
Views
5
Helpful
5
Replies

"ip tacacs source-interface" command not working

Go to solution
mjmnetsec
Level 1
Level 1

‎09-30-2013 11:43 AM - edited ‎03-10-2019 08:57 PM

I have a C-3750 L3 switch that's part of a project to get ACS-based authentication configured, and while I'm able to get most of the devices working, this one switch won't take the ip tacacs source-interface command. Can someone confirm whether this is an IOS issue?:

---C-3750-a(config)#ip tacacs source-interface loopback0

                                 ^

% Invalid input detected at '^' marker.

Current IOS on the device:

Switch Ports Model              SW Version            SW Image                

------ ----- -----              ----------            ----------              

*    1 28    WS-C3750G-24PS     12.2(44)SE            C3750-ADVIPSERVICESK9-M 

     2 28    WS-C3750G-24PS     12.2(44)SE            C3750-ADVIPSERVICESK9-M 

--

Thanks!

1 person had this problem
Labels:
0 Helpful
2 Accepted Solutions

Accepted Solutions

Go to solution
Abha Jha
Cisco Employee
Cisco Employee

‎09-30-2013 02:23 PM

Its a bug:-

CSCsm28901

"ip tacacs source-interface" command missing in 12.2.44SE.

Please move to another IOS.

View solution in original post

0 Helpful

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee

‎09-30-2013 02:46 PM

Since this is a known defect because ip tacacs source-interface" isn't available globally, you should be able to include it in a group configuration, for example:

tacacs-server host key

aaa group server tacacs+ TAC

server

ip tacacs source-interface

aaa authentication login default group TAC local

Let me know if you have any further queries.

~BR
Jatin Katyal

**Do rate helpful posts**

~Jatin

View solution in original post

5 Replies 5

Go to solution
Abha Jha
Cisco Employee
Cisco Employee

‎09-30-2013 02:23 PM

Its a bug:-

CSCsm28901

"ip tacacs source-interface" command missing in 12.2.44SE.

Please move to another IOS.

0 Helpful

Go to solution
churchilroy.garg1
Level 1
Level 1
In response to Abha Jha

‎07-12-2018 11:20 AM

Instead of using the ip tacacs source-interface Loopback0 command in the global config mode, specify the source interface in the server group-

 

Example - 

aaa group server tacacs+ TACACS+_ISE
server-private <server IP> key <key>

ip tacacs source-interface Loopback0

0 Helpful

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee

‎09-30-2013 02:46 PM

Since this is a known defect because ip tacacs source-interface" isn't available globally, you should be able to include it in a group configuration, for example:

tacacs-server host key

aaa group server tacacs+ TAC

server

ip tacacs source-interface

aaa authentication login default group TAC local

Let me know if you have any further queries.

~BR
Jatin Katyal

**Do rate helpful posts**

~Jatin

Go to solution
mjmnetsec
Level 1
Level 1
In response to Jatin Katyal

‎10-01-2013 09:11 AM

Thanks for confirming the fact that this is a bug. The workaround worked just fine. Thank you.

0 Helpful

Go to solution
Jatin Katyal
Cisco Employee
Cisco Employee
In response to mjmnetsec

‎10-01-2013 09:31 AM

Uw. Thanks for updating/closing the thread.

~BR
Jatin Katyal

**Do rate helpful posts**

~Jatin
0 Helpful
Customers Also Viewed These Support Documents