Hello,
I have setup a switch with aaa authentication that is setup. I have the configuration set like this:
aaa new-model
!
!
aaa authentication banner ^CC
!!!!!!!!!!!!!!!!!! ATTENTION !!!!!!!!!!!!!!!!!!
The ACS Server is not available at the moment
!!!!!!!!!!!!!!!!!! ATTENTION !!!!!!!!!!!!!!!!!!
^C
aaa authentication login default group tacacs+ local
aaa authentication enable default enable
aaa authorization exec default group tacacs+ none
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 0 default start-stop group tacacs+
aaa accounting commands 1 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+
!
With this configuration i can log-in into the switch with my aaa information/account. But i still receive the banner that the ACS is not available.
I have the same configuration on a different switch and there i do not see the banner when i login:
So this is he problem switch:
login as: user
CC
*******************************************************************************
* UNAUTHORISED ACCESS PROHIBITED *
* This system is for the use of authorised users only. Individuals using this *
* computer system without authority, or in excess of their authority, are *
* subject to having all of their activities on this system monitored and *
* recorded by system personnel. *
* *
* In the course of monitoring individuals improperly using this system, or in *
* the course of system maintenance, the activities of authorised users may *
* also be monitored. *
* *
* Anyone using this system expressly consents to such monitoring and is *
* advised that if such monitoring reveals possible evidence of criminal *
* activity, system personnel may provide evidence of such monitoring to *
* security officials. *
* *
* The above notice also applies when using this system, or parts of it, to *
* gain access to other systems. *
*******************************************************************************
C
!!!!!!!!!!!!!!!!!! ATTENTION !!!!!!!!!!!!!!!!!!
The ACS Server is not available at the moment
!!!!!!!!!!!!!!!!!! ATTENTION !!!!!!!!!!!!!!!!!!
Using keyboard-interactive authentication.
password:
CC
*******************************************************************************
** **
** UNAUTHORISED ACCESS PROHIBITED **
** YOUR SESSION IS RECORDED **
** **
*******************************************************************************
switch#
So i do get authenticated with the ACS server no issue, but i still receive the banner.
On a different switch with the same aaa commands i get this:
login as: user
C
*******************************************************************************
* UNAUTHORISED ACCESS PROHIBITED *
* This system is for the use of authorised users only. Individuals using this *
* computer system without authority, or in excess of their authority, are *
* subject to having all of their activities on this system monitored and *
* recorded by system personnel. *
* *
* In the course of monitoring individuals improperly using this system, or in *
* the course of system maintenance, the activities of authorised users may *
* also be monitored. *
* *
* Anyone using this system expressly consents to such monitoring and is *
* advised that if such monitoring reveals possible evidence of criminal *
* activity, system personnel may provide evidence of such monitoring to *
* security officials. *
* *
* The above notice also applies when using this system, or parts of it, to *
* gain access to other systems. *
*******************************************************************************
Using keyboard-interactive authentication.
password:
C
*******************************************************************************
** **
** UNAUTHORISED ACCESS PROHIBITED **
** YOUR SESSION IS RECORDED **
** **
*******************************************************************************
switch#
Where could this problem reside?
