cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
813
Views
1
Helpful
4
Replies

How to use tacacs password on EXEC mode insted of local enable pass

Scott12
Level 1
Level 1

Hello there!

I just configured a wireless lan controller model 9800 and now we are working to integrete it with ISE to be able to use Tacacs.

I've followed the site (see below) step by step and the network user is able to authenticate through SSH and HTTP, but now my supervisor wants to be able to use his own tacacs password instead of the local enable password. I mean type the same password twice.

How can I do that?

https://www.cisco.com/c/en/us/support/docs/wireless/catalyst-9800-series-wireless-controllers/214490-configure-radius-and-tacacs-for-gui-and.html

 

Cheers!

 

 

1 Accepted Solution

Accepted Solutions

balaji.bandi
Hall of Fame
Hall of Fame
 but now my supervisor wants to be able to use his own tacacs password instead of the local enable password

If you are integrated with ISE for TACACS (and any other external source like AD, your supervisor can use his own AD account password)

as soon as you enable TACACS, there is no Local password works and only works when TACACS not reachable and fall back to Local

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

View solution in original post

4 Replies 4

balaji.bandi
Hall of Fame
Hall of Fame
 but now my supervisor wants to be able to use his own tacacs password instead of the local enable password

If you are integrated with ISE for TACACS (and any other external source like AD, your supervisor can use his own AD account password)

as soon as you enable TACACS, there is no Local password works and only works when TACACS not reachable and fall back to Local

 

BB

***** Rate All Helpful Responses *****

How to Ask The Cisco Community for Help

Hello,

Totally agree you, after logging with our AD account we are able to access to the device, nevertheless after login in we have to type the local enable password to access to Enables privileged EXEC mode.

How can I avoid this?

If you followed the configuration guide you should have all authentication going to TACACS as @balaji.bandi says.
If not then you must still have enable configured to use local.

Screenshot 2023-10-05 100011.png

 

Review Cisco Networking for a $25 gift card