TACACS+ is not working on PIX Firewall

Unanswered Question
Jul 14th, 2008


Recently we installed the Cisco ACS 4.2 ver in our network and we are adding the network devices to it. now all the network devices are working with TACACS+ id's except the secuirty device like pix firewalls

existing pix configuration...

Cisco PIX Firewall Version 6.3(4)

Cisco PIX Device Manager Version 3.0(2)

aaa-server TACACS+ protocol tacacs+

aaa-server TACACS+ max-failed-attempts 3

aaa-server TACACS+ deadtime 10

aaa-server TACACS+ (inside) host x.x.x.x test timeout 10

some one pls help me in this.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
dhananjoy chowdhury Mon, 07/14/2008 - 04:48


Did you enable it for telnet / ssh/http access authentication ?

aaa authentication telnet console TACACS+

aaa authentication ssh console TACACS+

Jagdeep Gambhir Mon, 07/14/2008 - 04:56

Here are the commands to need,

PIX ( CODE 6.3.4 )

username Test password cisco

username Test privilege 15

aaa-server TACACS protocol tacacs+

aaa-server TACACS (outside) host cisco timeout 10

aaa authentication http console TACACS LOCAL

aaa authentication ssh console TACACS LOCAL

aaa authentication telnet console TACACS LOCAL

aaa authentication enable console TACACS LOCAL

If you don't need SSH,HTTP then no need to use it.



Do rate helpful posts


This Discussion