Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1511
Views
0
Helpful
3
Replies

TACACS Authentication issue

Erland Medrano
Level 1
Level 1

‎08-10-2016 12:05 AM - last edited on ‎03-25-2019 05:35 PM by Community Manager

Hi Cisco,

Good day!

Need your help on my problem, the problem is that a switch that we are trying to integrate to ACS can't authenticate via TACACS. based on our testing and troubleshooting, the ACS before config is Single connect device and TACACS+ Draft Compliant Single Connect Support is chosen. but when trying to change the configuration to Legacy TACACS + Single Connect support it works fine. 

Question: what is the standard procedure for enrollment 1 or 2 (See below) ? what is the different?

1. Single connect Device and TACACAS + Draft Compliant Single Connect Support

or

2. Just Legacy TACACS + Single Connect Support 

Labels:
0 Helpful
3 Replies 3

karans
Level 1
Level 1

‎08-11-2016 07:09 AM

Hi Erland,

The difference between Single connect Device and TACACAS + Draft Compliant Single Connect Support OR Legacy TACACS + Single Connect Support is former will send single connect flag to the NAS and latter will not send the single connect flag to NAS device.

You can also refer this draft for better understanding,

http://tools.ietf.org/html/draft-grant-tacacs-02

0 Helpful

Erland Medrano
Level 1
Level 1
In response to karans

‎08-24-2016 02:23 AM

thanks for verification 

0 Helpful

kevink707
Level 1
Level 1
In response to karans

‎05-18-2018 01:34 PM

Any recommended best practices for this setting?

0 Helpful
Customers Also Viewed These Support Documents