Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1008
Views
0
Helpful
2
Replies

TACACS+ authentication question

mjsully
Level 1
Level 1

‎05-27-2004 10:40 AM - edited ‎03-10-2019 07:50 AM

If I set our new Ciscoworks server to use TACACS+ as the login module, it allows any user with a TACACS account to login to the server with Help Desk priveleges. However, the Ciscoworks server is not defined as being a AAA client. How is the TACACS+ server authenticating without it being a defined client? I thought no device would be able to authenticate unless it was added first as a AAA client on the TACACS+ server? What am I missing here?

Labels:
0 Helpful
2 Replies 2

mhoda
Level 5
Level 5

‎06-04-2004 02:16 PM

Hello,

Yes, you are correct !! TACACS + Server should not authenticate the users from Cisco Works, if its not defined as a AAA client on the TACACS+ Server. I would check the Passed Authentication (you may need to turn it on on ACS Windows, its turned off by default) to see if its really authenticting against ACS Server. If it is, then my guess would be, there is a default AAA client defined with the same shared secrect key defined in the Cisco Works. Otherwise, it should not authenticate. What kind of TACACS+ Server are you using?

Thanks,

Mynul

0 Helpful

mjsully
Level 1
Level 1
In response to mhoda

‎06-07-2004 04:30 AM

You are correct, there was a "default" config setup under the name "other" that had the same key as the TACACS+ server. Thanks for the help!

0 Helpful
Customers Also Viewed These Support Documents