Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Misconfigured AAA and NOW Locked out

Hi,

I unforunately misconfigured a router to access the tacacs server, but i now cant log in. Somehow the authentication fails, i have tried connecting to a directly connected router and filter udp port 49 on all interfaces but still have the same problem. I also connected through the console, but still no luck there. below is the filter i used

access-list 101 deny udp any eq tacacs any

access-list 101 permit ip any any

interface Serial2/1:0

ip address 10.151.0.45 255.255.255.252

ip access-group 101 in

ip access-group 101 out

no ip directed-broadcast

Any ideas on how i can be able to login again ?

regards

MK

3 REPLIES
Silver

Re: Misconfigured AAA and NOW Locked out

On the box that is hosed up are you using a tacacs source interface command ?

Do you have SNMP read/write strings ?

New Member

Re: Misconfigured AAA and NOW Locked out

Hey MK,

Not sure if you managed to resolve this but yah, you pretty much locked yourself out of this one. You could have taken the Tacacs server offline, failing that rebooted the router but I am guessing that you saved the config before realising that you locked yourself out of the router. After that, you will need to break into the router and well, you know the rest.... :))

Bronze

Re: Misconfigured AAA and NOW Locked out

Have you tried password recovery procedures yet ?

Daniel

305
Views
0
Helpful
3
Replies
CreatePlease login to create content