01-16-2011 09:17 PM - edited 03-10-2019 05:43 PM
Hi,
Can some body help me out solving this issue.
I have cisco 3800 configured for tacacs+ authentication.
below is the config.
========================================..
aaa group server tacacs+ CSCS
server 172.17.17.10
aaa authentication login default group tacacs+ enable
aaa authentication login console none
aaa accounting exec default start-stop grou CSCS
aaa session-d common
ip tacacs source-interface FastEthernet0/0
tacacs-server host 172.17.17.10 key """"""
line vty 0 4
exec-timeout 60 0
privilege level 15
password PASSWORD
logging synchronous
transport input telnet ssh
========================================..
in ACS server the error message it is showing in Authen-Failure-Code = key Mismatch
So now only local authentication is working
Any HELP?
01-17-2011 12:48 AM
Hi,
in ACS server the error message it is showing in Authen-Failure-Code = key Mismatch
tacacs-server host 172.17.17.10 key """"""
You have different keys configured on ACS and router/switch
Regards.
Alain.
01-17-2011 01:52 AM
Hi.
Keys i tried to change many times. Same on Router/ACS
but still not working.!
01-17-2011 07:18 AM
Hi,
do a debug aaa authentication while trying to authenticate and post output here
Regards.
Alain.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: