Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

FWSM not accessible with local accounts if AAA is configured

I do have an issue that I am not able to log in with telnet to our FWSM with a local account created in the system context.

Let's say I have an account usera with password 12345 and I do have AAA configured with LOCAL added as well.

When I try to log in I see the login on the ACS as failed which is correct but then it should check the local database and see that this user exists and should let me in.

Does anybody have an idea what could be the problem?

1 ACCEPTED SOLUTION

Accepted Solutions

Re: FWSM not accessible with local accounts if AAA is configured

Hi ..

It sounds like you have configured AAA using two methods of authentication (RADIUS or TACACS and LOCAL). If that is correct, then be aware that LOCAL authentication will be checked only if the server(s) referred by the first method of authentication (the ACS in your case) is unavailable. The second authentication method (LOCAL in your case) will not be checked if the FWSM can contact the ACS server.

I hope it helps .. please rate it if it does !!!

1 REPLY

Re: FWSM not accessible with local accounts if AAA is configured

Hi ..

It sounds like you have configured AAA using two methods of authentication (RADIUS or TACACS and LOCAL). If that is correct, then be aware that LOCAL authentication will be checked only if the server(s) referred by the first method of authentication (the ACS in your case) is unavailable. The second authentication method (LOCAL in your case) will not be checked if the FWSM can contact the ACS server.

I hope it helps .. please rate it if it does !!!

121
Views
0
Helpful
1
Replies
CreatePlease to create content