cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

Ask the Expert- SD-WAN

176
Views
0
Helpful
2
Replies
Highlighted
Beginner

How to bypass tacacs on console connection in cisco nexus 9000

Hi guys , I need to connect via console without pass/user or with local user/pass , but I have tacacs configured for all lines , I tried with aaa authentication login console none  , but I think I have problems with aaa autho.. 

Should I remove the line aaa authorization commands console group TACACS+ local??

 

This is my actual config. Nexus 9000

aaa authentication login default group TACACS+
aaa authorization config-commands default group TACACS+ local
aaa authorization commands default group TACACS+ local
aaa authorization commands console group TACACS+ local
tacacs-server directed-request

 

Thanks in advance.

 

BR

2 REPLIES 2
Hall of Fame Expert

Re: How to bypass tacacs on console connection in cisco nexus 9000

Hello Ramirov,

try the following

 

aaa authentication login CONSOLE local

 

line con 0

login authentication CONSOLE

 

Edit:

this is how it works on IOS. the command under the line con 0 is login authentication <name>

 

Hope to help

Giuseppe

 

Beginner

Re: How to bypass tacacs on console connection in cisco nexus 9000

Hello Giuseppe , is not the same on NXOS.

 

switch(config-console)# login ?
No matching command found in current mode, matching in (config) mode

in-failure Set options for failed login attempt
on-success Set options for successful login attempt

CreatePlease to create content
Content for Community-Ad
July's Community Spotlight Awards