05-24-2011 11:47 AM
I am not NX-OS guy... but and I am trying to configure authentication with our ACS on our MDS 9222i. I want to use tacacs+ then local if that fails.
In IOS I can do that with the following command:
aaa authentication login default group tacacs+ local
But in NX-OS that is not an option.
hostname(config)# aaa authentication login default group servergroupname ?
<CR>
WORD Server group name (Max Size 127)
none No authentication
Here is my config
I want to be able to use both tacacs+ and local user database for authentication? What am I missing?
Solved! Go to Solution.
05-25-2011 04:52 PM
If you want to use both tacacs and local for authentication. You will need to create local users on the switch.
The authentication will first check with tacacs then fall-back to local.
Thanks
05-25-2011 04:52 PM
If you want to use both tacacs and local for authentication. You will need to create local users on the switch.
The authentication will first check with tacacs then fall-back to local.
Thanks
05-26-2011 08:30 AM
Thanks for your response. I originally wanted to use both tacacs+ and local, but I am ok with having local only work when tacacs+ is unreachable.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide