Nexus 7010 Tacacs+ can't do any commands once configured???
Hello I have Nexus 7010 and I have just finished configuring TACACS+ on it after a week and now it wont accept any commands from the remote logins. If I set the aaa authorization to "aaa authorization login default group XXXX" It gives me and error saying "ERROR: AAA authorization failed AAA_AUTHOR_STATUS_METHOD=16(0X10). If I take off the aaa authorization when I try to run a command it shows "% Permission denied". I am currently using Cicso ACS 5.2 in conjunction with the nexus. The following is my configuration:
tacacs-server key xxxx
tacacs-server host xxxx
aaa group server tacacs+ xxxxx
source interface vlan1
aaa authentication login default group xxxxx
aaa authentication login console local
aaa authorization commands default group xxxx
aaa authorization config-commands default group xxxx
Please note I have tried "aaa authorization commands default group xxxx local" and "aaa authorization commands default local" to try and resovle the issue but I get the same problem.
If anyone out there knows what piece of the puzzle I'm missing here please let me know. I heard that a command set may need to be done to ACS to resolve this issue but I do not know where to start on that. Any help here would be appriciated.
Purpose of the documentReference TopologyUse-CaseSymptomDiagnosisSolutionAdditional References
Purpose of the document
This document describes the general recommendations or best practices when designing and deploying the Cisco SD-Access technology. The ...
Dear All, When I use the show interface command on the Cisco Router ISR-4331, it will display as below information. The word that I mark red, it refresh every 5 seconds. But, I compare with the old router model like a Cisco 29XX or 28X...
Whether you're attending VMworld 2019 on-site or from afar, read the latest on the key themes to expect. They are also the key themes for IT management today, from software defined everything to cloud and automation to IoT and edgecomputing : http:...
To participate in this event, please use the button to ask your questions
This topic is a chance to discuss more about SD-WAN), it's foundations and inner mechanisms as well as its correct design a...