Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2523
Views
0
Helpful
2
Replies

SF-300 TACACS+ Enable not working

craig.amos
Level 1
Level 1

‎12-20-2011 07:02 AM

Running  SF-300 24 port non-POE (model # SRW224G4-K9 V01) firmware 1.1.2.0

Configured TACACS+ support for login via TELNET and SSH.

CLI allows connection to non-privledged mode on TELNET via TACACS, but when Iattempting to enter privledge mode the connection is rejected.

Had to set the enable mode to use the enable password which is less than ideal.

See attached file for commands

Is anyone else having this issue?

Labels:
119240-SF-300 TACACS issue.txt.zip
0 Helpful
2 Replies 2

Flaming Badger
Level 1
Level 1

‎05-23-2012 09:25 AM

From CLI as a Priv15 user,

conf t

line telnet

no enable authentication

Hope this helps,

Iain.

0 Helpful

Vin Daniell
Level 1
Level 1
In response to Flaming Badger

‎12-05-2012 02:07 PM

I tried "no enable authentication" as recommended and get this in my local log:

%AAA-W-REJECT: New ssh connection, source 10.37.6.124 destination 10.36.12.247  REJECTED

When putting back on "enable authentication ssh" tacacs show user $enab15$ trying to login. Can I change it to use the username accessing the system?

0 Helpful
Customers Also Viewed These Support Documents