Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
534
Views
0
Helpful
1
Replies

Tacacs Source interface for Default and Vrf possible?

oscardenizjensen
Level 1
Level 1

‎07-11-2024 01:21 AM

Hej
I am trying to configure Tacacs access to ASR9900 (7.11.1) series device through both default and mgmt vrf. Default will be the primary since it will be first in the aaa authentication order.

I would like the tacacs request from default to be created by the Loopback 0, but I figured that would mess with tacacs access through Mgmt vrf since all requests would be sent from loopback 0. 

Is there a way to create a souce-interface per vrf for tacacs?

Other option I see is that I do not set a source-interface, but then the egress interfaces would send requests to the tacacs server instead of the loopback as I see it.

Regards 

Labels:
0 Helpful
1 Reply 1

oscardenizjensen
Level 1
Level 1
In response to antisocial11224

‎07-11-2024 05:49 AM

Ahhhh the vrf command comes after you specify the interface. Normally you have to define vrf before specifying interface so I never tried it. 

So it would look like this then right?
tacacs source-interface Loopback0
tacacs source-interface MgmtEth0/RP0/CPU0/0 vrf OOBM

0 Helpful
Customers Also Viewed These Support Documents