Showing results for 
Search instead for 
Did you mean: 

Who Me Too'd this topic

Nexus N7K AAA 7 TACACS+ Configurations are not working

Ahmed Ashfaque

Good Day All,

I have configured tacacs+ & aaa configuration on my nexus but it is not working anyonen can advice with expert opinion?? below are configs done:

AAA Configurations


HQ-N7K-2# sh running-config aaa

aaa authentication login default group PACI-TACACS
aaa authentication login console local
aaa authorization config-commands default group PACI-TACACS local
aaa authorization commands default group PACI-TACACS local
aaa accounting default group PACI-TACACS
no aaa user default-role
tacacs-server directed-request

TACACS+ Configurations


HQ-N7K-2# sh running-config tacacs+

feature tacacs+

tacacs+ distribute
ip tacacs source-interface mgmt0
tacacs-server host key 7 "paci@XXX"
tacacs+ commit
aaa group server tacacs+ PACI-TACACS
use-vrf management
source-interface mgmt0

Connectivity towards ACS Server


HQ-N7K-2# ping source vrf management
PING ( from 56 data bytes
64 bytes from icmp_seq=0 ttl=63 time=1.258 ms
64 bytes from icmp_seq=1 ttl=63 time=1.154 ms
64 bytes from icmp_seq=2 ttl=63 time=1.186 ms
64 bytes from icmp_seq=3 ttl=63 time=1.349 ms
64 bytes from icmp_seq=4 ttl=63 time=1.226 ms

Port (49) testing towards ACS


HQ-N7K-2# telnet 49 source vrf management
Connected to
Escape character is '^]'.
Connection closed by foreign host.

but on testing I am getting this.

HQ-N7K-2# test aaa group PACI-TACACS aashfaque 12345698
error authenticating to server, status=7

Please advice if you see any issue in configs....


Who Me Too'd this topic