Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
8340
Views
10
Helpful
3
Replies

vg224 cannot remove the no aaa new-model

Lance Wendel
Level 1
Level 1

‎06-06-2013 05:38 AM - edited ‎03-10-2019 08:31 PM

Hello all,

my customer is facing with an issue that I cannot see an option on how to remove the

aaa new-model,

once he puts the command, he gets the following info back

device(config)#no aaa new-model

Changing configuration back to no aaa new-model is not supported.

Continue?[confirm]

the current config is as follows(not all info pasted)

******************************************************

version 15.1

aaa new-model

!

!

aaa authentication login default group tacacs+ local

aaa authentication enable default group tacacs+ enable

aaa authorization console

aaa authorization exec default group tacacs+ if-authenticated

aaa accounting exec default start-stop group tacacs+

aaa accounting commands 14 default stop-only group tacacs+

aaa accounting commands 15 default stop-only group tacacs+

aaa accounting connection default stop-only group tacacs+

aaa session-id common

ip tacacs source-interface xxxxt0/0

tacacs-server host 1.2.3.4 single-connection

tacacs-server timeout 7

tacacs-server key 7

any help on this please?

thanks in advance

Lancellot

Labels:
0 Helpful
3 Replies 3

Jatin Katyal
Cisco Employee
Cisco Employee

‎06-06-2013 07:04 AM

The message displayed is not a simple warning message. It is a confirmation message. If enter is pressed, then "no aaa new-model" will be accepted. Pressing any other key will result in the abortation of the cli "no aaa new-model"

once done, try to run the command to make sure its deleted

show run | in aaa

NOTE: We recommed that one should remove the authentication and authorization commands before we execute "no aaa new-model". It may create issues when you turn it on next time as it is configured for external authentication and authorization and we never know what would be a status of external authentication server in future.

Regards,

Jatin

*Do rate helpful posts*

~Jatin

Jatin Katyal
Cisco Employee
Cisco Employee
In response to Jatin Katyal

‎06-08-2013 02:22 AM

Did that help you understanding why we are getting the warning message. Let us know if you have any doubts.

Jatin Katyal
- Do rate helpful posts -

~Jatin
0 Helpful

Lance Wendel
Level 1
Level 1
In response to Jatin Katyal

‎06-10-2013 03:54 AM

HI Jatin,

Apologies for the late reply , was trying to get customers feedback on this. it looks like customer had to manually remove all of it lines, line by line. So in other words if he apply the no aaa new-model then press enter the aaa lines will still be there.

do you think this a know bug? I will  check later cisco bug report , but top of your head would you happen to know anything realted to this ?

thank sin advance

Lance

0 Helpful
Customers Also Viewed These Support Documents