No routes downloaded from TACACS server to ISDN router

Unanswered Question
Feb 14th, 2008

I have a problem concerning an ISDN router and TACACS server. The router is configured with "aaa route download 1" and is supposed to receive route from the TACACS server.

However, we never recieve any routes. Seems like the TACACS server (10.165.30.55) just read END-OF-FILE. As can be seen from the log file.

The log file generated by "debug tacacs events" is attached together with sh ver and sh config.

The TACACS is CiscoSecure ACS for Windows 2000/NT, Release 3.0(2) Build 5

Any help will is appreciated.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
ebreniz Wed, 02/20/2008 - 14:26

You need to configure is the following equivalent commands in your configuration

aaa authentication login default group tacacs+ local

aaa authentication login conport group tacacs+ local

aaa authentication enable default group tacacs+ enable

aaa authorization exec default group tacacs+ if-authenticated

aaa authorization commands 15 default group tacacs+ local

http://www.cisco.com/en/US/docs/ios/12_0t/12_0t3/feature/guide/3600mbri.html#wp34327

http://www.cisco.com/univercd/cc/td/doc/product/software/ios120/12cgcr/secur_c/scprt1/index.htm

Actions

This Discussion