No TACACS+ Administration Reports after upgrade to ACS 4.1

Answered Question
Jun 21st, 2007

Hi,

I was running ACS 4.0 demo version. Everything was running fine.

After upgrading and keeping the old configuration, I can't see logs in the TACACS+ Administration Reports. I kept the configurations on the router and switch the same, so I believe that the problem resides in the ACS software.

I tested some debug, and it seems that the router is sending the command that is being typed to ACS.

Here is the config I?m using:

aaa new-model

tacacs-server host 192.168.X.X key XXXXXXXXXXX

aaa authentication login telnet group tacacs+ enable

aaa authentication login console enable

aaa authentication enable default group tacacs+ enable

aaa accounting send stop-record authentication failure

aaa accounting exec default start-stop group tacacs+

aaa accounting commands 1 default start-stop group tacacs+

aaa accounting commands 15 default start-stop group tacacs+

aaa accounting connection telnet start-stop group tacacs+

line con 0

authorization exec NO-AUTH

login authentication console

line vty 0 4

authorization exec AUTH

login authentication telnet

aaa authorization exec AUTH group tacacs+ none

aaa authorization config-commands

aaa authorization exec NO-AUTH none

aaa authorization commands 0 default group tacacs+ none

aaa authorization commands 1 default group tacacs+ none

aaa authorization commands 15 default group tacacs+ none

I have this problem too.
0 votes
Correct Answer by Jagdeep Gambhir about 9 years 5 months ago

Hi,

This is a known issue, you need to apply patch ACS 4.1.1.23.5 to fix the issue.

Patch for appliance is availble on

http://www.cisco.com/cgi-bin/tablebuild.pl/acs-soleng-3des

Patch name : ACS SE 4.1.1.23.5 accumulative patch

Patch for acs windows is availble on

http://www.cisco.com/cgi-bin/tablebuild.pl/acs-win-3des

Patch Name : ACS 4.1.1.23.5 accumulative patch

That should fix the issue,

Regards,

Jagdeep

Note: If that answers your question, then please mark this thread as resolved, so that others can benefit from it.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (1 ratings)
Loading.
Correct Answer
Jagdeep Gambhir Thu, 06/21/2007 - 07:27

Hi,

This is a known issue, you need to apply patch ACS 4.1.1.23.5 to fix the issue.

Patch for appliance is availble on

http://www.cisco.com/cgi-bin/tablebuild.pl/acs-soleng-3des

Patch name : ACS SE 4.1.1.23.5 accumulative patch

Patch for acs windows is availble on

http://www.cisco.com/cgi-bin/tablebuild.pl/acs-win-3des

Patch Name : ACS 4.1.1.23.5 accumulative patch

That should fix the issue,

Regards,

Jagdeep

Note: If that answers your question, then please mark this thread as resolved, so that others can benefit from it.

nuno.pinto Mon, 06/25/2007 - 06:02

Hi Jagdeep .

Thanks for the reply.

I updated ACS and it's working now.

Jagdeep Gambhir Mon, 06/25/2007 - 06:18

Pinto,

Nice to know. Please mark this thread as resolved, so that others can benefit from it.

Regards,

~JG

Actions

This Discussion