TACACS problem

leandroklazen · ‎07-14-2017

Hi,

I am trying to get an HP Switch, 5130, to authenticate to my Cisco ACS 5.3 server. I keep getting the following error "A TACACS+ packet was received with a source IP Address that did not match any configured Network Device or AAA Client"

The IP is definitely specified as well as the password is correct.

Is there another way I can debug this?

Thanks

Aditya Ganjoo · ‎07-14-2017

Hi,

This means the packet coming from the device is having a different IP configured for a network device under AAA clients in ACS.

Please check what is the tacacs source-interface on the device and have you put in the same IP for the AAA client on ACS.

Regards,

Aditya

Please mark helpful and correct answers.

leandroklazen · ‎07-14-2017

This is what I thought, but in the logs I see it is the correct IP that is trying to connect, yet it is still being dropped

Joe R. · ‎07-14-2017

If you go to Monitoring and reports> launch monitoring reports> Tacacs Authentication

Then you can click on details of the log that is giving you the "A TACACS+ packet was received with a source IP Address that did not match any configured Network Device or AAA Client" error.

You can see the Remote IP Address of the device, and then add it under Network Resources>Network Devices and AAA Clients.

If there is more than one IP for the device in Network Devices and AAA Clients, try moving the IP from the logs to the top for that device.