Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1154
Views
0
Helpful
4
Replies

SDWAN TACACS congfiurations on ISR

Go to solution
AbuRafay63
Level 1
Level 1

‎01-21-2021 12:56 AM

Dears,

 

I have configured tacacs on sdwan cedge isr. But cedge is not initiating communication with tacacs server which is behind firewall and on firewall there are no logs from source to destination. Reachability is there. need to know how i can troubleshoot as i am unable to see log files to see where is problem. Also see below config if i miss any config.

 

aaa group server tacacs+ tacacs-512
server-private 10.x.x.x port 49 timeout 5 key 7 12390653395a0a2422
server-private 10.x.x.x port 49 timeout 5 key 7 0324584f2d5e276c46
ip tacacs source-interface GigabitEthernet0
ip vrf forwarding Mgmt-intf
!
aaa authentication login default local group tacacs-512
aaa authorization exec default local group tacacs-512
!
 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
osdesent
Cisco Employee
Cisco Employee
In response to AbuRafay63

‎01-25-2021 08:26 AM

Do you have the proper routing in VPN512 to reach the TACACS server?

Oscar Desentis
Customer Success Specialist (SD-WAN)

View solution in original post

0 Helpful
4 Replies 4

Go to solution
osdesent
Cisco Employee
Cisco Employee

‎01-21-2021 07:06 AM

Are you trying to reach your TACACS server via VPN512? 

Oscar Desentis
Customer Success Specialist (SD-WAN)
0 Helpful

Go to solution
AbuRafay63
Level 1
Level 1
In response to osdesent

‎02-10-2021 11:43 PM

yes through vpn 512.. reachability is there.

0 Helpful

Go to solution
AbuRafay63
Level 1
Level 1

‎01-23-2021 03:49 AM

Dear,

 

Yes its under Mgmt-Intf vrf.... we are using cedge ISR in sdwan network.. Thanks

0 Helpful

Go to solution
osdesent
Cisco Employee
Cisco Employee
In response to AbuRafay63

‎01-25-2021 08:26 AM

Do you have the proper routing in VPN512 to reach the TACACS server?

Oscar Desentis
Customer Success Specialist (SD-WAN)
0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents