Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
500
Views
0
Helpful
1
Replies

turning on AAA between new PIX 535 and ACS srvr

dgalati000
Level 1
Level 1

‎05-02-2007 12:46 PM - edited ‎03-10-2019 03:08 PM

Can't find a command ref for a new Pix (vers 7.2(1)13 )) for this command >>

ip tacacs source interface <<. Also, can't enter this command into the Pix.

Labels:
0 Helpful
1 Reply 1

romason
Cisco Employee
Cisco Employee

‎05-02-2007 05:46 PM

You specify the interface in the following manner:

1. Define the server group and the protocol

2. Then specify the "source interface" and the host:

http://www.cisco.com/univercd/cc/td/doc/product/multisec/asa_sw/v_7_2/conf_gd/general/aaa.htm#wp1089730

hostname(config)# aaa-server AuthInbound protocol tacacs+

hostname(config-aaa-server-group)# max-failed-attempts 2

hostname(config-aaa-server-group)# reactivation-mode depletion deadtime 20

hostname(config-aaa-server-group)# exit

hostname(config)# aaa-server AuthInbound (inside) host 10.1.1.1

hostname(config-aaa-server-host)# key TACPlusUauthKey

hostname(config-aaa-server-host)# exit

HTH,

Chuck

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents