CISCO ASA 920 24TZ-M version 15.6 configuration tacacs+ server not working

kimseng · ‎05-16-2019

Hi all,

I have one issue related to configure tacacs+ on cisco ASA 920 version 15.6 and i found some command not found

aaa new-model
aaa authentication login default group tacacs+ local

tacacs-server host 10.10.80.111 timeout 5
tacacs-server directed-request
tacacs-server key 7 0310591F265E731A

but the command doesn't found

tacacs-server host

tacacs-server key

johnd2310 · ‎05-16-2019

Hi,

Try

tacacs server XXXX

address ipv4 10.10.80.111

key yyyyyy

Thanks

John

**Please rate posts you find helpful**

kimseng · ‎05-17-2019

Hi,

yes i can do it now but i have other issue with my ASR can't connect to Tacacs+ Server where is my tacacs+ server is configure with Centos7

Here is my configuration on my ASR 920

aaa authentication login default local group tacacs+
aaa authorization config-commands
aaa authorization exec default local group tacacs+

Tacacs+ Server - public :
Server name: MyServer
Server address: 10.10.80.111
Server port: 49
Socket opens: 21
Socket closes: 21
Socket aborts: 0
Socket errors: 0
Socket Timeouts: 0
Failed Connect Attempts: 12
Total Packets Sent: 0
Total Packets Recv: 0

johnd2310 · ‎05-17-2019

Can the router ping and Tacacs server ping each other? Is the Tacacs key identical on both devices?

Thanks

John

**Please rate posts you find helpful**

kimseng · ‎05-17-2019

Hi jonh,
Now everything is working fine. I changed from public to private configuration on my asr 920.