Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
5007
Views
0
Helpful
4
Replies

Nexus 9k switch is giving the error %TACACS-3-TACACS_ERROR_MESSAGE: All servers failed to respond

parismita_0305
Level 1
Level 1

‎03-10-2017 01:43 AM - edited ‎03-08-2019 09:41 AM

i have recently configured 2 new Nexus 9k series switches 

i configured the tacacs and the aaa and i am able to ping the tacacs server from the switch. but when i try to login with my tacacs id and pw its not authenticating for some reason.

here are the error logs:

%AUTHPRIV-3-SYSTEM_MSG: pam_aaa:Authentication failed for user
%DAEMON-3-SYSTEM_MSG: error: PAM: Authentication failure for illegal user 
%TACACS-3-TACACS_ERROR_MESSAGE: All servers failed to respond

suggestions??

3 people had this problem
Labels:
0 Helpful
4 Replies 4

Ganesh Hariharan
VIP Alumni
VIP Alumni

‎03-12-2017 04:20 AM 

i have recently configured 2 new Nexus 9k series switches 
i configured the tacacs and the aaa and i am able to ping the tacacs server from the switch. but when i try to login with my tacacs id and pw its not authenticating for some reason.
here are the error logs:
%AUTHPRIV-3-SYSTEM_MSG: pam_aaa:Authentication failed for user 
%DAEMON-3-SYSTEM_MSG: error: PAM: Authentication failure for illegal user 
%TACACS-3-TACACS_ERROR_MESSAGE: All servers failed to respond
suggestions??

Hi ,

what error logs are you seeing at TACAS server ..??

have a look on the TACAS integration with Nexus Switches ...

Hope it Helps...

-GI

0 Helpful

mkriss5681
Level 1
Level 1

‎04-19-2019 08:44 AM

Seeing this as well in 7.0(3)I7(6). I see open bugs for the other Nexus lines, but not 9k. 

0 Helpful

Fincey
Level 1
Level 1
In response to mkriss5681

‎11-04-2019 12:42 PM

I have 9Ks - On 7.0.3.i7.6 and 9.3.1 code I saw this issue.  

 

I was able to use the hidden command sync-snmp-password passwd userabc  1.2.3.4   

passwd - is the password of the user

userabc- TACACs authenticated account

1.2.3.4 - TACACs server address.    

 

The command will return to the CLI with no output.,  Nothing added to the running-config,  but the annoying, constant 5 min. interval  TACACs error messages stopped.   Tested on Version 9.3.1 on 9Ks.  Reload shows initial syslog "failed to respond" error, but it did NOT repeat in 5 min. intervals again.

0 Helpful

Fincey
Level 1
Level 1
In response to mkriss5681

‎11-04-2019 12:45 PM - edited ‎11-04-2019 12:46 PM

 
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card