Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
575
Views
0
Helpful
3
Replies

VSS AAA not working on console

networker99
Level 1
Level 1

‎08-03-2010 02:57 AM - edited ‎03-10-2019 05:18 PM

We have implemented AAA on all our internal switches, and all is working well.. primary login is sent to ACS server, and if unavailable local credentials are used.  The one exception is out 6509 VSS switch.  If you SSH the switch all is correct, however if you console into the switch it does not use the ACS server, only the local credentials.

aaa new-model
aaa authentication login default group tacacs+ local
aaa authorization config-commands
aaa authorization exec default group tacacs+ local
aaa authorization commands 0 default group tacacs+ local
aaa authorization commands 15 default group tacacs+ local
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 0 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+

Labels:
0 Helpful
3 Replies 3

Javier Henderson
Level 4
Level 4

‎08-06-2010 10:08 AM

Can you post the line con 0 configuration?

0 Helpful

networker99
Level 1
Level 1
In response to Javier Henderson

‎08-06-2010 11:53 AM

There is nothing under it..

0 Helpful

Javier Henderson
Level 4
Level 4
In response to networker99

‎08-06-2010 12:22 PM

If there is nothing under it then the default authentication method should apply.

Please enable:

debug aaa authen

debug tacacs

then paste the output of trying to log in on the console.

0 Helpful
Customers Also Viewed These Support Documents