Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1522
Views
0
Helpful
3
Replies

Prime 3.5 compliance policy to find defunct ACS servers

tverhoeven
Level 1
Level 1

‎03-31-2019 10:40 AM

A few months back I pushed out a configuration for our new AAA servers.  As part of that push I tried to also delete the old AAA servers.  This however did not work on all devices so now I have to create a policy that will find the old AAA servers both by name and IP.

 

Any help with this would be GREATLY appreciated.

 

 

Labels:
0 Helpful
3 Replies 3

Francesco Molino
VIP Alumni
VIP Alumni

‎03-31-2019 11:37 AM

Hi

 

You need to remove all configurations for your old tacacs servers?

 

First I would look at aaa server group like the screenshots below:

 

image.png

image.png

 

Replace SRV-NAME by your real aaa server name. If the compliance policy founds it then just do the below fix cli:

aaa group server tacacs+ NAME-GRP

 no server-name SRV-NAME

 

Afterwards, you can search for tacacs server SRV-NAME and do a fix cli of no tacacs server SRV-NAME

 

Hope this helps.

 

 

 


Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
0 Helpful

tverhoeven
Level 1
Level 1
In response to Francesco Molino

‎03-31-2019 01:50 PM

What goes under actions
0 Helpful

Francesco Molino
VIP Alumni
VIP Alumni
In response to tverhoeven

‎03-31-2019 03:24 PM

On the 2nd screenshot, what does under action is what I told you with the fix cli commands.

Thanks
Francesco
PS: Please don't forget to rate and select as validated answer if this answered your question
0 Helpful
Customers Also Viewed These Support Documents