Buy or Renew
Buy or Renew
Cisco + Splunk: Itā€™s a new day for your data. Learn more.
Ā 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results forĀ 
Search instead forĀ 
Did you mean:Ā 
cancel
Start a conversation
2521
Views
0
Helpful
2
Replies

SF-300 TACACS+ Enable not working

craig.amos
Level 1
Level 1

ā€Ž12-20-2011 07:02 AM

Running  SF-300 24 port non-POE (model # SRW224G4-K9 V01) firmware 1.1.2.0

Configured TACACS+ support for login via TELNET and SSH.

CLI allows connection to non-privledged mode on TELNET via TACACS, but when Iattempting to enter privledge mode the connection is rejected.

Had to set the enable mode to use the enable password which is less than ideal.

See attached file for commands

Is anyone else having this issue?

Labels:
119240-SF-300 TACACS issue.txt.zip
0 Helpful
2 Replies 2

Flaming Badger
Level 1
Level 1

ā€Ž05-23-2012 09:25 AM

From CLI as a Priv15 user,

conf t

line telnet

no enable authentication

Hope this helps,

Iain.

0 Helpful

Vin Daniell
Level 1
Level 1
In response to Flaming Badger

ā€Ž12-05-2012 02:07 PM

I tried "no enable authentication" as recommended and get this in my local log:

%AAA-W-REJECT: New ssh connection, source 10.37.6.124 destination 10.36.12.247  REJECTED

When putting back on "enable authentication ssh" tacacs show user $enab15$ trying to login. Can I change it to use the username accessing the system?

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Switch products supported in this community
Cisco Business Product Family
  • CBS110
  • CBS220
  • CBS250
  • CBS350
Cisco Switching Product Family
  • 110
  • 200
  • 220
  • 250
  • 300
  • 350
  • 350X
  • 550X
Customers Also Viewed These Support Documents