cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
555
Views
0
Helpful
3
Replies

ACS Server Blocked Console Port

jsteffensen
Level 1
Level 1

Something has happended with my configuration...

When i Access the Console port, im only getting "Press Retur to get started"

"Press Retur to get started", "Press Retur to get started"

I guess it has something to do with my ACS/RADIUS configuration.

Here is a small summary of my Configuration:

aaa new-model

aaa authentication login default group tacacs+ local

aaa authentication login no_tacacs none

line con 0

login authentication no_tacacs

Since the Site is faar away, i would prefere to drive once, and my question is;

Can i place a "password xyz" under the line con 0 to solve it?

Do i have to remove the login under the line con 0?

Or is there anything else i have to do?

Best Regards

Jarle

3 Replies 3

tepatel
Cisco Employee
Cisco Employee

"aaa authentication login no_tacacs none" will not ask for authentication on console login..So putting a password or removing the line may not help..So problem may be something else like you may have "no exec" under the console config..

At this point just do the password recovery and configure the console line the way you want...Thx..Tejal

The only configuration i found "near" the Con is:

line con 0

login authentication no_tacacs

line 33 62

so there should not be any no excec (if this is not hidden in the show runn).

We can access the router via telnet, so there are at the moment no needs to do pw-recovery yet, and i could argument to set a local password on the console port (aaa authentication no_tacacs local with username and password)

Would this enable me the console port again (with username password check)?

best regards

Jarle

But on the otherhand i might be blind (regarding the configuration)

Here is the whole aaa config:

aaa new-model

aaa authentication login default group tacacs+ local

aaa authentication login no_tacacs none

aaa authentication ppp default group tacacs+ local

aaa authorization exec default group tacacs+

aaa authorization network default group tacacs+

aaa accounting exec default start-stop group tacacs+

aaa accounting network default start-stop group tacacs+

i guess the "aaa authorisation exec default group tacacs+ " may play a roule here?

Anyone ?

Greetings

Jarle

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: