Solved: Re: MARS 6.1.1 device discovery timeout

marijaslov · ‎01-05-2011

Hello,

MARS 6.1.1 can not discover IOS 12.4 router using telnet or ssh, when router uses AAA tacacs+ login authentication. After login prompt there is no response from MARS, and connection times out. Manual SSH connection to this router works, directly from MARS CLI. When we put older IOS on the same router, discovery works.

Discovery works for all other devices (switches, routers with older IOS, firewalls, etc. with tacacs+ or local authentication). Does anyone have similar problem?

Justin Teixeira · ‎01-05-2011

Hi Marijaslov,

You probably need to set the TACACS/AAA server prompt parameter on the MARS. Browse to Admin -> System Parameters -> TACACS/AAA Server Prompts and configure the MARS with the prompts that it should expect to see based on your AAA configuration.

-Justin

View solution in original post

Justin Teixeira · ‎01-05-2011

Hi Marijaslov,

You probably need to set the TACACS/AAA server prompt parameter on the MARS. Browse to Admin -> System Parameters -> TACACS/AAA Server Prompts and configure the MARS with the prompts that it should expect to see based on your AAA configuration.

-Justin

marijaslov · ‎01-06-2011

Hello Justin,

Thanks for quick response. We tried changing default prompts but that does not help. All devices get the same prompt from tacacs+ server, but MARS cannot discover only routers with IOS newer than 12.4(9). I just wondered if anyone else uses MARS 6.1.1 in production and does this scenario work for anyone?

marijaslov · ‎01-17-2011

Hello again Justin,

Actually you were right, when I put exactly the same tacacs+ prompt, everything works with all devices.

Thank you.