Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

tacacs configuration on gig0/0 Management port on cisco 3850

Dear Members

I would like to configure the gig0/0 (Management port) on Cisco 3850 switch for TACACS authentication, however, the TACACS authentication doesnt work and the switch can only do local authentication.

The below link doesnt include TACACS as one of the supported features on the management port of Cisco 3850 and I would like to confirm if this is the case.

http://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst3850/software/release/3se/consolidated_guide/configuration_guide/b_consolidated_3850_3se_cg/b_consolidated_3850_3se_cg_chapter_011110.html

Your inputs / response is much appreciated.

-Balaji

Everyone's tags (2)
1 ACCEPTED SOLUTION

Accepted Solutions

Hi Balaji,the management port

Hi Balaji,

the management port is assigned to a VRF called "mgmt-vrf", so it does not participate in global ip forwarding because it is intended for out-of-band management. This link showes a configuration example for TACACS:

http://blog.monkeyrouter.com/2014/04/tacacs-over-management-vrf.html

HTH

Rolf
 

2 REPLIES

Hi Balaji,the management port

Hi Balaji,

the management port is assigned to a VRF called "mgmt-vrf", so it does not participate in global ip forwarding because it is intended for out-of-band management. This link showes a configuration example for TACACS:

http://blog.monkeyrouter.com/2014/04/tacacs-over-management-vrf.html

HTH

Rolf
 

New Member

Thanks for your response Rolf

Thanks for your response Rolf, we were intending to use this as "in-band" management and because it doesn't support TACACS and has limited SNMP capability, we have dropped the plan of using it as "in-band" management, I wish Cisco could have named this as "out-of-band" management access to the switch.

-Balaji

1668
Views
0
Helpful
2
Replies