cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1484
Views
0
Helpful
5
Replies

UCS Central TACACS Authentication bug

Sergii Sypalo
Cisco Employee
Cisco Employee

Hi folks,

Today I faced a bug I want to report:

My setup:

OS: Windows 10 x64

UCS Central: 1.5(1b)

Browsers: Chrome 54, Firefox 49, Edge 38

I want to login to UCS Central by using Active Directory integrated authentication, but because of our security restrictions all authentication requests must be made through TACACS (which quering AD)

So I've added new authentication domain, then TACACS server, then TACACS Provider Group, which contains previously configured TACACS server, then go back to authentication domain and configured it to use just create TACACS Group

But I still wasn't able to login using TACACS, only local admin

Then I've beed tried to recreate TACACS connection in UCS Central, but this time increased retry counts from 1 to 3, also didn't create TACACS Provider group, so in my authentication domain I've specified to use TACACS for authentication, but no groups were selected. It's works fine in our currect setyp in UCSM, as we have only one TACACS server per datacenter, so no need for TACACS Provider Group

All these steps were done under local admin account, so I've logged of and tried to login under my domain account.

But after providing my creds, changing domain from Native to my on UCS Central login screen, I just see it's loading endlessly. I decided to close the page and open it again, but UCS Central or Chrome remembered that I've used domain creds and just tried to login under my domain creds, so still the same endless loading of the page, but nothing even error

Then I tried to open UCS Central in Edge, with no luck at all, it's just not working in Edge

Last chance was in Firefox, but after providing my local admin and password (not domain creds) I've got authntication failed. Restarting UCS Central VM didn't help.

Looking for your ideas guys

Best regards,

Sergii Sypalo, Cisco PlatOpsCWS engineer

5 Replies 5