Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

ACS

Hi,

there is no log generating for TACACS+ Administration in ACS.

ACS Version: 4.1.1.23

Router Config:

aaa authentication login default group tacacs+ local

aaa authentication login no_tacacs local enable

aaa authentication enable default group tacacs+ enable

aaa authorization exec default group tacacs+ local

aaa authorization network default group tacacs+ local

aaa accounting exec default start-stop group tacacs+

aaa accounting commands 1 default start-stop group tacacs+

aaa accounting commands 7 default start-stop group tacacs+

aaa accounting commands 15 default start-stop group tacacs+

aaa accounting network default start-stop group tacacs+

aaa accounting connection default start-stop group tacacs+

aaa accounting system default start-stop group radius

please advice

2 REPLIES

Re: ACS

Hi

where is the config for the aaa server..?

Make sure that u have proper key configured.

Thanks

Mahmood

Community Member

Re: ACS

Has the router been configured on the ACS server?

I have the following config on my routers.

aaa authentication fail-message ^CC ***Access Denied*** ^C

aaa authentication password-prompt Local_Password:

aaa authentication username-prompt Local_User:

aaa authentication login default group tacacs+ local

aaa authentication enable default group tacacs+ enable

aaa authorization exec default group tacacs+ if-authenticated

aaa authorization commands 1 default group tacacs+ if-authenticated

aaa authorization commands 15 default group tacacs+ if-authenticated

aaa accounting exec default start-stop group tacacs+

aaa accounting commands 15 default start-stop group tacacs+

aaa accounting connection default start-stop group tacacs+

176
Views
0
Helpful
2
Replies
CreatePlease to create content