cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
322
Views
10
Helpful
1
Replies

TACACS+ Administration in Cisco ACS 4.1

Anand Narayana
Level 6
Level 6

Hi,

with the following the switch is working perfectly with what ever i configured in Cisco ACS....

aaa new-model

aaa authentication login default group tacacs+ enable local

aaa authentication enable default group tacacs+ enable

aaa authorization exec default group tacacs+ if-authenticated

aaa authorization commands 1 default group tacacs+ if-authenticated

aaa authorization commands 15 default group tacacs+ if-authenticated

aaa accounting exec default start-stop group tacacs+

tacacs-server host 10.203.1.92 key checkingtheswitch

could able to check the report,logged in users, login & logout time, failied authentication & pass authentications, but i couldn't see anything in "TACACS+ Administration" in Cisco ACS, can any one help me in this regard?

The above configuration was good enuf for me, that even if the Cisco ACS is down for any other reason, i could still able to login with the local database on the switch if i use "aaa authorization exec default group tacacs+ if-authenticated"

but still i feel something could be missing, so please suggest me any other commands needs to be added.

1 Reply 1

bwalchez
Level 4
Level 4

May be it is due to the bug bug CSCsg97429. http://www.cisco.com/en/US/products/sw/secursw/ps2086/prod_release_note09186a00807ab436.html#wp164275

The patch information resolves this issue.

Click this link if you are using ACS for Windows: http://www.cisco.com/pcgi-bin/tablebuild.pl/acs-win-3des?psrtdcat20e2 and download:

?ACS-4.1.1.23-CSTacacs-SW-CSCsg97429.zip

?ACS-4.1.1.23-CSTacacs-SW-CSCsg97429-Readme.txt

Click this link if you are using ACS Solution Engine: http://www.cisco.com/pcgi-bin/tablebuild.pl/acs-soleng-3des?psrtdcat20e2 and download:

applAcs_4.1.1.23_ACS-4.1-CSTacacs-CSCsg97429.zip

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: