I'm using commands authorization with Cisco Secure ACS 4.1. This morning I'm going to set the MOTD and entries fail because my banner starts with a blank.
The shell command set that I'm using is a "permit unmatched commands".
What you're experiencing is a known defect:
CSCtg38468 cat4k/IOS: banner exec failed with blank characters
The above parser error can be seen together with traceback, when configuring a banner containing a blank character at the begining of line.
Problem happens, when AAA authorization is used together with TACACS+
Make sure there is no blank character at the begining of line in the banner message.
Problem Details: trying to configure banner exec with blank character at beginning of line failed.
This happens when configuring the banner exec via telnet/ssh !
When configuring the same banner exec via console-port, everything is fine.
Note the blank characters at beginning of each line. When removing those, banner exec works fine.
Again, this was working till IOS version 12.2(46)SG.
Beginning with 12.2(50)SG1 and up, the behaviour has changed.
**Do rate helpful posts**