Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
594
Views
0
Helpful
1
Replies

tacacs not timing out

ras0787
Level 1
Level 1

‎08-07-2018 09:31 AM

I have an issue with tacacs queries not timing out as expected.

 

[risteele@liberty Saved]$ telnet 172.29.85.143
Trying 172.29.85.143...
Connected to 172.29.85.143.
Escape character is '^]'.
Restricted Access Rutgers University % Authentication failed

% Authentication failed

% Authentication failed
Connection closed by foreign host.

 

We have the following configured, but it doesn't seem to be working.

 

tacacs-server timeout 10

 

 

The problem is when the network is down, the console login behaves the same and we can't login.

 

Cisco IOS Software [Denali], Catalyst L3 Switch Software (CAT3K_CAA-UNIVERSALK9-M), Version 16.3.6, RELEASE SOFTWARE (fc3)

ROM: IOS-XE ROMMON
BOOTLDR: CAT3K_CAA Boot Loader (CAT3K_CAA-HBOOT-M) Version 3.56, RELEASE SOFTWARE (P)

 

Switch Ports Model SW Version SW Image Mode
------ ----- ----- ---------- ---------- ----
* 1 52 WS-C3650-48PD 16.3.6 CAT3K_CAA-UNIVERSALK9 INSTALL

Labels:
0 Helpful
1 Reply 1

Damien Miller
VIP Alumni
VIP Alumni

‎08-07-2018 04:38 PM

Can provide the output from the following two commands, it would be helpful to confirm the expected login behavior. Please remove any passwords that come with the config.

sh run | s aaa
sh run | s line con|line vty
0 Helpful
Customers Also Viewed These Support Documents