Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
512
Views
0
Helpful
2
Replies

Tacacs authentication fails for one user account for only one switch

prasey
Level 1
Level 1

‎04-28-2011 01:47 AM - edited ‎03-10-2019 06:02 PM

Hi,

I am having an scenario, where as Tacacs authentication fails for one user account for only one switch.

The same user account works well for other devices.

The AAA configs are same on every devices in the network.

Heres the show tacacs output from the switch where only one user account fails;

              Socket opens:        157
             Socket closes:        156
             Socket aborts:        303
             Socket errors:          1
           Socket Timeouts:          2
   Failed Connect Attempts:          0
        Total Packets Sent:       1703
        Total Packets Recv:       1243
          Expected Replies:          0

What could be the reason ?

No errors on ACS server; same rights had been given to the user account.

Thanks to advise.

Prasey

Labels:
0 Helpful
2 Replies 2

Nicolas Darchis
Cisco Employee
Cisco Employee

‎04-28-2011 05:16 AM

Lol. hard to say without more info.

Can you take a sniffer trace ? debug tacacs ?

0 Helpful

bmcginn
Level 3
Level 3

‎04-28-2011 06:26 PM

Hi there,

Does the user get authenticated in the ACS logs?

reports and activity----> failed attempts

ro

reports and activity----->  passed authentications

That will help narrow it down.

Brad

0 Helpful
Customers Also Viewed These Support Documents