Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1490
Views
0
Helpful
1
Replies

Console Access Authentication Question?

kendo.igor
Level 1
Level 1

‎11-09-2002 01:13 PM - edited ‎02-21-2020 10:05 AM

I've enabled TACACS+ authentication for telneting into PIX and managing it by entering.

aaa -server MYTACACS protocol tacacs+

aaa-server MYTACACS (inside) host 10.1.1.1 secretkey timeout 15

aaa authentication telnet console MYTACACS

aaa authentication enable console MYTACACS

How can ensure that I can still telnet into PIX and manage it by using local credentials if (and only if) the tacacs+ server is down.

Thanx,

Labels:
0 Helpful
1 Reply 1

murabi
Level 4
Level 4

‎11-14-2002 01:34 PM

If an aaa authentication http console group_tag command statement is not defined, you can gain access to the PIX Firewall (via PDM) with no username and the PIX Firewall enable password (set with the password command). If the aaa command is defined but the HTTP authentication requests a time out, which implies the AAA servers may be down or not available, you can gain access to the PIX Firewall using the username pix and the enable password. By default, the enable password is not set.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents