I am in the process of securing my network devices and getting away from local accounts and moving to TACACS+. Everything is working great from the console and telnet but it fails when I access the device (specifically 3548 switches) through http. I have set the ip http authentication to tacacs. The results from debug http authentication is just that authentication fails. Any help is appreciated. Thanks
I am using ACS 3.1 to and things seem to be working fine. ACS 3.1 does have a documented problem with http authentication but that is only with the VPN Device Manager application (CSCdv46105). I guess, you need to revisit your configuration and check for mistakes.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
[toc:faq]Introduction:This document describes details on how NAT-T
works.Background:ESP encrypts all critical information, encapsulating
the entire inner TCP/UDP datagram within an ESP header. ESP is an IP
protocol in the same sense that TCP and UDP are I...