Showing results for 
Search instead for 
Did you mean: 

Nexus N7K AAA 7 TACACS+ Configurations are not working

Ahmed Ashfaque

Good Day All,

I have configured tacacs+ & aaa configuration on my nexus but it is not working anyonen can advice with expert opinion?? below are configs done:

AAA Configurations


HQ-N7K-2# sh running-config aaa

aaa authentication login default group PACI-TACACS
aaa authentication login console local
aaa authorization config-commands default group PACI-TACACS local
aaa authorization commands default group PACI-TACACS local
aaa accounting default group PACI-TACACS
no aaa user default-role
tacacs-server directed-request

TACACS+ Configurations


HQ-N7K-2# sh running-config tacacs+

feature tacacs+

tacacs+ distribute
ip tacacs source-interface mgmt0
tacacs-server host key 7 "paci@XXX"
tacacs+ commit
aaa group server tacacs+ PACI-TACACS
use-vrf management
source-interface mgmt0

Connectivity towards ACS Server


HQ-N7K-2# ping source vrf management
PING ( from 56 data bytes
64 bytes from icmp_seq=0 ttl=63 time=1.258 ms
64 bytes from icmp_seq=1 ttl=63 time=1.154 ms
64 bytes from icmp_seq=2 ttl=63 time=1.186 ms
64 bytes from icmp_seq=3 ttl=63 time=1.349 ms
64 bytes from icmp_seq=4 ttl=63 time=1.226 ms

Port (49) testing towards ACS


HQ-N7K-2# telnet 49 source vrf management
Connected to
Escape character is '^]'.
Connection closed by foreign host.

but on testing I am getting this.

HQ-N7K-2# test aaa group PACI-TACACS aashfaque 12345698
error authenticating to server, status=7

Please advice if you see any issue in configs....


15 Replies 15

Key 0 XXXXxxx did the trick. thanks!
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Recognize Your Peers