No routes downloaded from TACACS server to ISDN router

Unanswered Question
Feb 14th, 2008
User Badges:

I have a problem concerning an ISDN router and TACACS server. The router is configured with "aaa route download 1" and is supposed to receive route from the TACACS server.


However, we never recieve any routes. Seems like the TACACS server (10.165.30.55) just read END-OF-FILE. As can be seen from the log file.


The log file generated by "debug tacacs events" is attached together with sh ver and sh config.

The TACACS is CiscoSecure ACS for Windows 2000/NT, Release 3.0(2) Build 5


Any help will is appreciated.



  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
ebreniz Wed, 02/20/2008 - 14:26
User Badges:
  • Silver, 250 points or more

You need to configure is the following equivalent commands in your configuration

aaa authentication login default group tacacs+ local

aaa authentication login conport group tacacs+ local

aaa authentication enable default group tacacs+ enable

aaa authorization exec default group tacacs+ if-authenticated

aaa authorization commands 15 default group tacacs+ local


http://www.cisco.com/en/US/docs/ios/12_0t/12_0t3/feature/guide/3600mbri.html#wp34327

http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/secur_c/scprt1/index.htm


Actions

This Discussion