Error in Authentication

shivam agarwal · ‎03-20-2013

Hello All,

I am getting error in authetication when I am trying to access a switch through tacacs. I have added the switch in ACS server.

The aaa config is

aaa new-model

aaa authentication login default group tacacs+ line

aaa authentication login console line

aaa authentication enable default group tacacs+ enable

aaa authorization exec default group tacacs+ if-authenticated

aaa accounting exec default start-stop group tacacs+

aaa accounting commands 15 default stop-only group tacacs+

tacacs-server host 10.201.85.222

tacacs-server key ******

line con 0

exec-timeout 30 0

password 7 104A5A1B1010425E

line vty 0 4

exec-timeout 30 0

password 7 045F58041A261C1B

login

line vty 5 15

exec-timeout 30 0

password 7 08251F4C1C1E5542

login

I know i forgot to add enable password in the config. What's the best way to access the switch now.

johnfrancisco · ‎03-20-2013

Remove connection to the Tacacs server, and the line should fall back to line password for authentication.

shivam agarwal · ‎03-20-2013

Thanks for replying and I did the same thing as you said but I see the same behavior..removing from ACS server it should fall back to line passwords. I am at console and still i am getting the same thing which is wierd ...

User Access Verification

Password:

cs-sbd1-dmz>en

% Error in authentication.

shivam agarwal · ‎03-22-2013

Thanks all, we had to do a password recovery though...So no other otpion..