Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

VSS AAA not working on console

We have implemented AAA on all our internal switches, and all is working well.. primary login is sent to ACS server, and if unavailable local credentials are used.  The one exception is out 6509 VSS switch.  If you SSH the switch all is correct, however if you console into the switch it does not use the ACS server, only the local credentials.

aaa new-model
aaa authentication login default group tacacs+ local
aaa authorization config-commands
aaa authorization exec default group tacacs+ local
aaa authorization commands 0 default group tacacs+ local
aaa authorization commands 15 default group tacacs+ local
aaa accounting exec default start-stop group tacacs+
aaa accounting commands 0 default start-stop group tacacs+
aaa accounting commands 15 default start-stop group tacacs+

3 REPLIES
Cisco Employee

Re: VSS AAA not working on console

Can you post the line con 0 configuration?

New Member

Re: VSS AAA not working on console

There is nothing under it..

Cisco Employee

Re: VSS AAA not working on console

If there is nothing under it then the default authentication method should apply.

Please enable:

debug aaa authen

debug tacacs

then paste the output of trying to log in on the console.

305
Views
0
Helpful
3
Replies
CreatePlease to create content