Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Create a new article
7769
Views
5
Helpful
1
Comments

Tacacs authentication for console access on the switch

minkumar
Level 1
Level 1

‎04-26-2013 12:10 PM - edited ‎02-21-2020 09:59 PM

This configuration  configures a tacacs + server for user authentication for console access.

aaa new-model
aaa authentication login console group tacacs+ local
aaa authentication enable console group tacacs+ enable
aaa authorization exec console group tacacs+ local if-authenticated
aaa accounting exec console start-stop group tacacs+
aaa session-id common
tacacs-server host 10.10.10.1
tacacs-server directed-request
tacacs-server key test
ip access-list standard VTY-ACCESS
remark VTY ACCESS
permit 172.24.0.0 0.0.255.255
deny any log
line con 0
exec-timeout 5 0
login authentication console

authorization exec console

transport output telnet
stopbits 1
line vty 0 4
access-class VTY-ACCESS in
exec-timeout 5 0
transport input telnet
transport output telnet
line vty 5 15
transport input none
transport output none

#Please post comments if there are any queries and rate if useful

Labels:
Comments
Dina2020
Level 1
Level 1
‎03-19-2020 01:19 PM

Hello Minkumar

 

I am having an issue with accessing a new Cisco 9410 console.  Is there another way to access the switch? I think the issue is with the TACAC server.  The switch is offline no TACAC server available. I am trying to complete configuring the switch.... Any assistance is greatly appreciated. I was under the assumption the switch would default to the local login after the 3 minute timeout

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents