Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Community Member

Need some one help

Hi

Iam trying to adding the PIX firewall to my newly installed the ACS server.

after adding all the required commands still i am unable to access the firewall using local user only.

my firewall is already having some aaa commands earlier. and i am unable to clear that lines.

PIX515# sh run | inc tacacs

aaa-server TACACS+ protocol tacacs+

PIX515# sh run | inc aaa

aaa-server TACACS+ protocol tacacs+

aaa-server TACACS+ max-failed-attempts 3

aaa-server TACACS+ deadtime 10

aaa-server RADIUS protocol radius

aaa-server RADIUS max-failed-attempts 3

aaa-server RADIUS deadtime 10

aaa-server LOCAL protocol local

PIX515#

some body please help me how to delete the above commands and what are the command that i have to place.

Pix Version:

Cisco PIX Firewall Version 6.3(4)

4 REPLIES

Re: Need some one help

Hi, these are the commands yo need

aaa-server TACACS+ protocol tacacs+

aaa-server TACACS+ host cisco

aaa authentication http console TACACS+ local

aaa authentication ssh console TACACS+ local

aaa authentication telnet console TACACS+ local

Also create a local admin user =

username admin password admin privilege 15

Now, to delete the old code, if you have not done "write mem" then a reboot will do.

or else you will have to follow the procedure given in this link :

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_password_recovery09186a008009478b.shtml

Community Member

Re: Need some one help

Hi,

i can able to login to the device using local username & password. i.e. telnet iam able to login.ssh is not allowing me.

now tell me how can remove the previous commands with out rebooting the device.

Re: Need some one help

Hi,

try these

no aaa-server TACACS+ protocol tacacs+

no aaa-server RADIUS protocol radius

Community Member

Re: Need some one help

still in same position

145
Views
0
Helpful
4
Replies
CreatePlease to create content