I have an issue with configuring TACACS on a switch (3560).  Whilst I configure it on vty lines 0 to 4, the config only appears on line vty 0.  Here is a capture of what I configure and what happens in the running config.  What I configure does not match what is stored in the config (I added the bold green  to highlight the lines of key interest).    

Switch>enable

Password:

Switch#show run | include aaa

aaa new-model

aaa authentication login AUTHEN_via_TACACS group tacacs+ local

aaa authorization exec Author-Exec_via_TACACS group tacacs+ local

aaa session-id common

Switch#show run | begin vty

line vty 0 4

transport input telnet ssh

line vty 5 15

transport input none

!

!

!

pnp profile pnp_redirection_profile

transport http ipv4 127.0.0.1 port 80

end

>>>>>> What I configure.

Switch#config t

Enter configuration commands, one per line.  End with CNTL/Z.

Switch(config)#line vty 0 4

Switch(config-line)#login authentication AUTHEN_via_TACACS

Switch(config-line)#^Z

Switch#

>>>>> TACACS appears to be active

Feb 20 01:56:46.569: %SYS-5-CONFIG_I: Configured from console by

!Comment

!Login from another terminal and TACACS login is active (but there is no TACACS

!server so it fails and default to local).

Feb 20 01:57:18.117: TPLUS: Queuing AAA Authentication request 119 for processing

Feb 20 01:57:18.121: TPLUS(00000077) login timer started 1020 sec timeout

Feb 20 01:57:18.121: TPLUS: processing authentication start request id 119

Feb 20 01:57:18.121: TPLUS: Authentication start packet created for 119()

Feb 20 01:57:18.121: TPLUS: Using server 192.168.1.250

Feb 20 01:57:18.121: TPLUS(00000077)/0/NB_WAIT/B8C1CA4: Started 5 sec timeout

Feb 20 01:57:21.119: TPLUS(00000077)/0/NB_WAIT: socket event 2

Feb 20 01:57:21.119: TPLUS(00000077)/0/NB_WAIT: write to 192.168.1.250 failed with errno 257((ENOTCONN))

Feb 20 01:57:21.119: TPLUS: Authentication start packet created for 119()

!Question

!I configured 'line vty 0 4' (see above), does anyone know why it ony

!configured vty 0  and not vty lines 1 to 4 as well?

>>> What the switch stores in running config.

Switch#show run | begin vty

line vty 0

login authentication AUTHEN_via_TACACS

transport input telnet ssh

line vty 1 4

transport input telnet ssh

line vty 5 15

transport input none

!

!

!

pnp profile pnp_redirection_profile

transport http ipv4 127.0.0.1 port 80

end

Switch#

Switch#show version

Cisco IOS Software, C3560CX Software (C3560CX-UNIVERSALK9-M), Version 15.2(4)E1, RELEASE SOFTWARE (fc2)

Technical Support: http://www.cisco.com/techsupport

Copyright (c) 1986-2016 by Cisco Systems, Inc.

Compiled Thu 28-Jan-16 16:14 by prod_rel_team

ROM: Bootstrap program is C3560CX boot loader

BOOTLDR: C3560CX Boot Loader (C3560CX-HBOOT-M) Version 15.2(3r)E2, RELEASE SOFTWARE (fc2)

Switch uptime is 21 weeks, 6 days, 20 hours, 8 minutes

System returned to ROM by power-on

System restarted at 14:06:06 UTC Mon Sep 19 2016

System image file is "flash:/c3560cx-universalk9-mz.152-4.E1/c3560cx-universalk9-mz.152-4.E1.bin"

Last reload reason: power-on

I am having a number of problems with configuring TACACS on my switch (version and model included in session capture above). I have posted this question on the learning network, but have had no answers after several days.  Is anyone able to explain why only line vty 0 is configured and not vty 0 to 4?