TACACS+ not working on WLC

jamaludeen_kc · ‎09-22-2009

Hi All,

I have configured tacacs for WLC. But I am not able to login to WLC using TACACS username and password.

Getting following message

Tue Sep 22 15:26:50 2009: Forwarding request to 10.0.0.1

6 port=49

Tue Sep 22 15:26:50 2009: tplus response: type=1 seq_no=2 session_id=ecf27238 le

ngth=6 encrypted=0

Tue Sep 22 15:26:50 2009: TPLUS_AUTHEN_STATUS = UNKNOWN(1)

Thanks

Jamal.S

Lucien Avramov · ‎09-22-2009

Please turn on the WLC CLI:

debug aaa all enable

And post the output

Are you using ACS as a TACACS server?

jamaludeen_kc · ‎09-22-2009

Thanks for you reply...

Attached logs taken from Live WLC.

ACS IP's : 165.28.96.150,165.28.32.146.

Tacacs user ID : q03670

Lucien Avramov · ‎09-22-2009

There is radius happening on the auth portion of the WLC.

There seems to be a misconfiguration issue.

What do the ACS failed logs say?

Can you make sure you followed exactly:

jamaludeen_kc · ‎09-23-2009

Hi..

The problem is fixed now...Actaully there is a TACACS Key mismatch between ACS and WLC.

Thanks a lot for your wonderful support.

Lucien Avramov · ‎09-23-2009

Great!

I guess we can mark this post resolved then.