Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
350
Views
0
Helpful
1
Replies

AAA Config not working

jorge.s
Level 1
Level 1

‎03-15-2007 09:13 AM - edited ‎03-10-2019 03:02 PM

Hi,

I've the following configuration on a switch:

aaa new-model

aaa authentication fail-message ^CCC

Failled to Authenticate!

Please Contact IT Networks Group for further information.

^C

aaa authentication login default group tacacs+ local

aaa authorization exec default group tacacs+ local

aaa authorization network default group tacacs+ local

aaa accounting exec default start-stop group tacacs+

aaa accounting commands 15 default start-stop group tacacs+

tacacs-server host 170.x.x.164 key tennetwork

tacacs-server host 170.x.x.166 key tennetwork

and we have the ACS Server with the switch created, right key, etc. When I try to login with an user which was locally created, everything goes well. But when I try to use an user from an External User Database, in this case Active Directory, even showing authentication ok on the Passed authentications, the Switch is throwing me out, with failed to authenticate message.

Labels:
0 Helpful
1 Reply 1

Vivek Santuka
Cisco Employee
Cisco Employee

‎03-15-2007 09:19 AM

Hi,

Try this :-

tacacs-server timeout 15

I think the switch is timing out while ACS talks to AD.

Regards,

Vivek

0 Helpful
Customers Also Viewed These Support Documents