Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I have configured tacacs+ on my WLC but am unable to log in. The tacacs server is not managed by me so I don't have access to it however, I want to give the team that does manage it some help and also ensure that I have configured the WLC correctly.
...
I have a single user whose VPN anyconnect software does not load at boot and will not open. No other user has this issue.
I have tried uninstall/reinstalling 3 times, which works for maybe a day then stops. I have also had task manager open at the ...
In my environment, we have IP phones (Avaya 9600 series) connected to a access port with PCs connected to the phones.
We plan to implement 802.1X authentication for the PCs, which I have working correctly and use MAB to authenticate the phones. How...
I manage about 6 switches (3 4506s, a 3650, a 3750 and the 4500x). I have successfully setup 2 factor authentication using a token/TACACs+ on 5 of them using the following commands:
aaa new-modelaaa authentication login local enableaaa authenticati...
I manage about 6 switches (3 4506s, a 3650, a 3750 and the 4500x). I have successfully setup 2 factor authentication using a token/TACACs+ on 5 of them using the following commands:
aaa new-modelaaa authentication login local enableaaa authenticati...
Thanks for your help! I was missing the aaa authorization command, as well as a Cisco-AV-Pair attribute in the Network policy for the phone.
For others who may be trying to set up something similar I'll attach screen shots of my NPS policy and past...
Found a solution at the following link:
https://networkumpire.wordpress.com/2015/08/29/management-interface-configuration-cisco-catalyst-4500x-and-asr1001-x/
aaa group server tacacs+ ACSserver-private A.B.C.D key XXXXip vrf forwarding mgmtVrfip tac...
Is there any way I can force a particular user to reauthenticate in a situation where, perhaps, I'm troubleshooting a network issue on their laptop?
And I guess the only way I can have users in general reauthenticate regularly is to enablle session...
