Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
979
Views
5
Helpful
2
Replies

TACACS for console Switch 4500

Go to solution
saleh.alsalamah
Level 1
Level 1

‎04-29-2018 02:11 AM - edited ‎03-08-2019 02:50 PM

Hi All,

I am having issue with TACACS login via console 

 

It is working fine though telnet but no with console 

IOS version is:  03.04.03.SG

below is the running-config: 

 

 

username quadmin privilege 15 secret 5 $1$UKtG$FWXajucKFlC8WKweQFPrS/
aaa new-model
!
!
aaa authentication login default group tacacs+ local
aaa authentication enable default group tacacs+
aaa authorization console
aaa authorization exec default group tacacs+ local if-authenticated
aaa authorization commands 0 default group tacacs+ none
aaa authorization commands 1 default group tacacs+ if-authenticated
aaa authorization commands 15 default group tacacs+ local if-authenticated

 

line con 0
stopbits 1
line vty 0 4
password 7 02050D480809
transport input ssh
line vty 5
password 7 110A1016141D
transport input ssh
line vty 6 15
transport input ssh

 

 

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
Georg Pauwen
VIP
VIP

‎04-29-2018 04:22 AM

Hello,

 

try the below:

 

aaa new-model
aaa authentication login default group tacacs+ local
aaa authentication login console group tacacs+ local
aaa authentication enable default group tacacs+
aaa authorization console
aaa authorization exec default group tacacs+ local if-authenticated
aaa authorization exec console group tacacs+ local if-authenticated
aaa authorization commands 0 default group tacacs+ none
aaa authorization commands 1 default group tacacs+ if-authenticated
aaa authorization commands 15 default group tacacs+ local if-authenticated
!
line con 0
exec-timeout 5 0
login authentication console
authorization exec console
stopbits 1

View solution in original post

2 Replies 2

Go to solution
Georg Pauwen
VIP
VIP

‎04-29-2018 04:22 AM

Hello,

 

try the below:

 

aaa new-model
aaa authentication login default group tacacs+ local
aaa authentication login console group tacacs+ local
aaa authentication enable default group tacacs+
aaa authorization console
aaa authorization exec default group tacacs+ local if-authenticated
aaa authorization exec console group tacacs+ local if-authenticated
aaa authorization commands 0 default group tacacs+ none
aaa authorization commands 1 default group tacacs+ if-authenticated
aaa authorization commands 15 default group tacacs+ local if-authenticated
!
line con 0
exec-timeout 5 0
login authentication console
authorization exec console
stopbits 1

Go to solution
saleh.alsalamah
Level 1
Level 1
In response to Georg Pauwen

‎05-06-2018 10:56 PM

Its working fine now, thank you.

0 Helpful
Customers Also Viewed These Support Documents