Solved: Tacacs broken on asdm.

slicerpro · ‎08-05-2015

Hi all,

I am trying to correct tacacs+ on one of our asa 5550's. Now Tacacs works via ssh, but not via asdm. However I can use asdm via local login. Here are some configs i believe are relevant:

Bugsunny# sh run http
http server enable
http x.x.x.0 255.255.255.0 management
http x.x.4.224 255.255.255.224 outside
http x.x.x.45 255.255.255.255 outside
http x.x.x.20 255.255.255.255 outside
http x.x.x.126 255.255.255.255 outside
http x.x.x.96 255.255.255.224 outside
http x.x.x.x 255.255.255.255 outside
bugsbunny# sh run ssh
ssh x.x.x.0 255.255.255.0 management
ssh x.x.4.224 255.255.255.224 outside
ssh x.x.x.45 255.255.255.255 outside
ssh x.x.x.20 255.255.255.255 outside
ssh x.x.x.126 255.255.255.255 outside
ssh x.x.x.96 255.255.255.224 outside
ssh x.x.x.x 255.255.255.255 outsidetimeout 30
bugsbunny# sh run asdm
asdm image disk0:/asdm-647.bin
asdm history enable

This driving me crazy..

johnd2310 · ‎08-05-2015

hi,

What is your AAA config for http authentication? Check that it is configured to use Tacacs first.

Thanks

John

**Please rate posts you find helpful**

View solution in original post

johnd2310 · ‎08-05-2015

hi,

What is your AAA config for http authentication? Check that it is configured to use Tacacs first.

Thanks

John

**Please rate posts you find helpful**

slicerpro · ‎08-07-2015

Thanks John, That was the missing piece.