ā12-20-2011 07:02 AM
Running SF-300 24 port non-POE (model # SRW224G4-K9 V01) firmware 1.1.2.0
Configured TACACS+ support for login via TELNET and SSH.
CLI allows connection to non-privledged mode on TELNET via TACACS, but when Iattempting to enter privledge mode the connection is rejected.
Had to set the enable mode to use the enable password which is less than ideal.
See attached file for commands
Is anyone else having this issue?
ā05-23-2012 09:25 AM
From CLI as a Priv15 user,
conf t
line telnet
no enable authentication
Hope this helps,
Iain.
ā12-05-2012 02:07 PM
I tried "no enable authentication" as recommended and get this in my local log:
%AAA-W-REJECT: New ssh connection, source 10.37.6.124 destination 10.36.12.247 REJECTED
When putting back on "enable authentication ssh" tacacs show user $enab15$ trying to login. Can I change it to use the username accessing the system?
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide