Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
809
Views
0
Helpful
3
Replies

IOS AAA Authentication not working

altaf.shah
Level 1
Level 1

‎01-16-2011 09:17 PM - edited ‎03-10-2019 05:43 PM

Hi,

Can some body help me out solving this issue.

I have cisco 3800 configured for tacacs+ authentication.

below is the config.

========================================..

aaa group server tacacs+ CSCS

server 172.17.17.10

aaa authentication login default group tacacs+ enable

aaa authentication login console none

aaa accounting exec default start-stop grou CSCS

aaa session-d common

ip tacacs source-interface FastEthernet0/0

tacacs-server host 172.17.17.10 key """"""

line vty  0 4

  exec-timeout 60 0

privilege level 15

password PASSWORD

logging synchronous

transport input telnet ssh

========================================..

in ACS server the error message it is showing in Authen-Failure-Code = key Mismatch

So now only local authentication is working

Any HELP?

Labels:
0 Helpful
3 Replies 3

cadet alain
VIP Alumni
VIP Alumni

‎01-17-2011 12:48 AM

Hi,

in ACS server the error message it is showing in Authen-Failure-Code = key Mismatch
tacacs-server host 172.17.17.10 key """"""

You have different keys configured on ACS and router/switch

Regards.

Alain.

Don't forget to rate helpful posts.
0 Helpful

altaf.shah
Level 1
Level 1
In response to cadet alain

‎01-17-2011 01:52 AM

Hi.

Keys i tried to change many times. Same on Router/ACS

but still not working.!

0 Helpful

cadet alain
VIP Alumni
VIP Alumni
In response to altaf.shah

‎01-17-2011 07:18 AM

Hi,

do a debug aaa authentication while trying to authenticate and post output here

Regards.

Alain.

Don't forget to rate helpful posts.
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents