Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
301
Views
0
Helpful
0
Replies

TACACS Authentication to WLC fails - WLAN user instead of MGMT user

andrew-hunt
Level 1
Level 1

‎06-24-2015 05:13 PM - edited ‎03-10-2019 10:51 PM

We have a number of 5508 WLCs running 7.6.100.0 code where we authenticate the management user against Cisco ACS 5.3 using TACACS+

 

If you attempt to login either via the web or via SSH the first attempt fails, but the second is successful.

 

ACS shows both authentication attempts as succeeding.

 

The WLC shows the first attempt as failing "AAA Authentication Failure for UserName:manager User Type: WLAN USER"

However, the second attempt is shown as successful "AAA Authentication Success for UserName:manager User Type: MGMT USER(READ WRITE)"

 

Can anyone shed any light as to why the first login attempt is WLAN USER?  I cannot see anything in the configuration that would cause this.  Management user priority is set to TACACS first, Local second.

 

Thanks!

Labels:
0 Helpful
0 Replies 0
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents