Re: TACACS issue with enable password

Zurattos · ‎04-14-2022

Hello ,

I want to ask of course I know with TACACS I can add a new user and password to Cisco device but my question can I provide the " enable password " on the device itself so I can use the commands such as show ip int brief ?

I mean enable password for the router or the switch can I change it using TACACS server ?

sorry but I'm new to TACACS and I'm using TACACSGUI

Best Regards

balaji.bandi · ‎04-14-2022

yes possible look at the same document for the product and exmaple :

https://www.pro-bono-publico.de/projects/tac_plus.html

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

MHM Cisco World · ‎04-14-2022

OLD enable password
OLD login password <- here you use AAA

you must use OLD login password and access to R or SW then
use OLD enable password to enter to level 15

finally change the OLD enable password with new one and if you want save it in AAA but with more command

aaa authentication enable default AAA local <- why local in end of this command ?? because if you loss connection to AAA server you can not even with console go to level 15 and change config.
please be careful here and config enable password local before use it with AAA.

thomas · ‎04-15-2022

I suggest you read and learn about TACACS configuration from the Cisco ISE Device Administration Prescriptive Deployment Guide :

TACACS issue with enable password

Cambio de equipos R&S - enable secret, username secret, tacacs key y password line

ISE - O que precisamos saber sobre TACACS+

User Can't change Password even we enable Allow password change

Enable Single Connect Mode option in TACACS ISE

Cisco Nexus シリーズ : Radius/Tacacs+ のトラブルシューティング