Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
219
Views
0
Helpful
4
Replies

% Error in authentication enable password without set line console

jaheshkhan
Level 4
Level 4

‎05-23-2024 08:19 AM - edited ‎05-23-2024 08:24 AM

getting the following error % Error in authentication. in C9500 switch in console. i have not set any configuration in line console. only in vty. why its asking for password in line con 0 without setting any configuration. 

after entering local username and password im unable to login to enable mode.

i dont want want enable password to ask.

i didnt put any enable secret or password in the configuration.

 

so how to set it now?

even i cannot login to console. its very strange that its asking for password in line console without any configuration. I havent connect the switch in network now. im just configuring the switch. but how can i login to console now. 

aaa new-model

aaa group server tacacs+ ISE_TACACS_GROUP
server name WFDA-MDF-PSN
server name WFDA-MDF-PSN

aaa authentication banner ^C All activities are logged, if you are not authorized please log out. ^C
aaa authentication login default local
aaa authentication login AAA group ISE_TACACS_GROUP local
aaa authentication enable default group ISE_TACACS_GROUP enable
aaa authorization exec AAA group ISE_TACACS_GROUP local
aaa authorization commands 0 AAA group ISE_TACACS_GROUP local
aaa authorization commands 1 AAA group ISE_TACACS_GROUP local
aaa authorization commands 15 AAA group ISE_TACACS_GROUP local
aaa accounting update newinfo

line con 0

line vty 0 4
access-class IT-ACCESS in
exec-timeout 5 0
privilege level 15
authorization commands 0 AAA
authorization commands 1 AAA
authorization commands 15 AAA
authorization exec AAA
login authentication AAA
length 0
transport input ssh
transport output telnet ssh

Please help me

 

Labels:
0 Helpful
4 Replies 4

MHM Cisco World
VIP
VIP

‎05-23-2024 08:49 AM

If yoh not wr the config then reboot the SW' it will return to point before you add aaa new model.

Note:- always add username/password and enable 

MHM

0 Helpful

jaheshkhan
Level 4
Level 4
In response to MHM Cisco World

‎05-23-2024 08:53 AM

unfortunately i did wr. i missed the secret password command. reason is that its a replacement of switch at staging state. 

now only possibility is password recovery right. i dont want to loose the configuration.

 

my question is that i didnt configure line con 0 with any configuration. why still asking theere. is this a bug?

0 Helpful

MHM Cisco World
VIP
VIP
In response to jaheshkhan

‎05-23-2024 08:58 AM

When you add aaa new-model the console and all line add authentication aaa.

If you can connect SW to tacacs' then I think you can success access to SW use tacacs username/password 

MHM

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card