Nexus 7010 Tacacs+ can't do any commands once configured???
Hello I have Nexus 7010 and I have just finished configuring TACACS+ on it after a week and now it wont accept any commands from the remote logins. If I set the aaa authorization to "aaa authorization login default group XXXX" It gives me and error saying "ERROR: AAA authorization failed AAA_AUTHOR_STATUS_METHOD=16(0X10). If I take off the aaa authorization when I try to run a command it shows "% Permission denied". I am currently using Cicso ACS 5.2 in conjunction with the nexus. The following is my configuration:
tacacs-server key xxxx
tacacs-server host xxxx
aaa group server tacacs+ xxxxx
source interface vlan1
aaa authentication login default group xxxxx
aaa authentication login console local
aaa authorization commands default group xxxx
aaa authorization config-commands default group xxxx
Please note I have tried "aaa authorization commands default group xxxx local" and "aaa authorization commands default local" to try and resovle the issue but I get the same problem.
If anyone out there knows what piece of the puzzle I'm missing here please let me know. I heard that a command set may need to be done to ACS to resolve this issue but I do not know where to start on that. Any help here would be appriciated.
the scenario is :I'm replacing core Cisco switch 4506-E with switch 4507R-E. As I have one supervisor card on 4506-E and I'm going to take out all the card that I have in 4506-E and install it in the new 4507R-E. On the 4507R-E I have 2 slots for the supe...
Since its release in August of 2019, the SASE report released by Gartner has generated a lot of chatter regarding what SASE is all about. People are wondering whether it will be disruptive to the current network and network security designs and are curiou...
I tried to setup a virtual environment with 2960 switches and 2911 Router. In one part of the network where I connected PCs directly to the 2911 Router, I was able to communicate to the attached devices, having configured static route. In the th...
Network Insider Live Webinar
Tuesday, June 23, 2020 10:00 am Pacific Time (San Francisco, GMT-08:00)
Learn how Software-Defined Access and new innovations in Cisco DNA Center provide a better way to control your network. We will explore new enhancements, ...
This event had place on Thursday 30, April 2020 at 10hrs PDT
Victor Moreno is a Distinguished Engineer at Cisco Systems responsible for the definition of next generation network architectures. Victor has over 20 years of i...