Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

rvv
New Member

Deleted AAA Server in CiscoSecure ACS

Hi all!

We have bough CSACSE-1112-K9.

This is software (CS ACS) and hardware platform.

I'am rename AAA self-server on CS ACS. There was aaa server with name "Self", key "secret_value" and own ip address. I'am delete this server and add it again with name csacs.

and now i can't authenticate using this server. In "failed attempts" i found record "Unknown NAS" with ACS ip address(!!) on every attempt i have made to autheticate

1 REPLY
Silver

Re: Deleted AAA Server in CiscoSecure ACS

The error is generated when a tacacs packet comes in with an IP address that the server does not recognize. By default the NAS should send the packet from the closest interface to the ACS. But it is not foolproof, you may use the following command:

ip tacacs source-interface (name the interface that you have listed in the tacacs server) This will assure that the packet is being sent with the same source address every time, and will ensure proper communication with the server.

143
Views
0
Helpful
1
Replies