I have AAA configured and working on an ACE 4710 appliance for SSH. The web interface only works with the local database. I don't see anything in the security guide about the web interface (only states telnet and ssh). Anyone else seeing this?
It does work - I have two in our lab that I've set up for AAA and it works fine.
Check this out:
I only have one local user (admin) and all others on ACS Server, using this test ACE config:
tacacs-server host 18.104.22.168 key cisco
aaa group server tacacs+ TACACS
aaa authentication login default group TACACS local
aaa authentication login console none
aaa accounting default group TACACS local
aaa authentication login error-enable
ACS Server needs some special config though, which is detailed here: