Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
530
Views
0
Helpful
1
Replies

TACACS+ authorization failure

T_tow
Level 1
Level 1

‎03-08-2018 10:16 AM - edited ‎02-21-2020 10:48 AM

Hey,

I'm trying to add TACACS+ authorization and authentication to my 2960x and my 4451.  I followed the new configuration examples but when I try to log in my with ssh I get an authorization failure and the local database never kicks in so the only way to get back in is to reboot.   Is there something that needs to be changed on this config?  

 

Ex config I mimicked:

tacacs-server host 192.168.9.25
tacacs-server key rycserdOb
!
aaa group server tacacs+ TAC_PLUS
 server 192.168.9.25

aaa new-model
aaa authentication login default group tacacs+ local
aaa authorization console 
aaa authorization exec default group tacacs+ local 

Thanks

 

Labels:
0 Helpful
1 Reply 1

Francesco Molino
VIP Alumni
VIP Alumni

‎03-08-2018 06:30 PM

Hi

You're missing some commands

Take a look on that doc:
https://communities.cisco.com/servlet/JiveServlet/previewBody/68194-102-1-125121/How-To_TACACS_for_IOS.pdf

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
0 Helpful
Customers Also Viewed These Support Documents