I am giving these commands on 6506 CatOS :
'set tacacs server 10.10.10.10 primary'
'set tacacs directedrequest enable'
'set tacacs key cisco'
'set tacacs timeout 10'
I cannot authenticate by the TACACS server, is there anything i should add/remove from the config. I can ping the TACACS server from this switch. Any inputs.
do you have these in your config?
set authentication login tacacs enable telnet primary
set authentication enable tacacs enable telnet primary
There might be several issues. The first thing that I would suggest is to look at the TACACS server, look in its logs and reports and verify if it sees the authentication request come in. If it sees the request come in, then how does it respond. Probably it is rejecting the request, and if so why? The answer is probably in the server logs and reports.
In my experience the most common issues in situations such as you describe are either the source address in the request from the Catalyst is not the address configured on the server, or the TACACS key configured on the switch is not the same as the key configured on the server.
Check the server and let us know what you find.