Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Community Member

Tacacs+ as primary...local user as backup

On a Cisco router / switch you can configure a a tacacs server and you can also configure local users on the router / switch. I

n the event that the tacacs server is unreachable you can still login with the local user.

Can this be accomplished on the Pix?

More importantly how?

Here is the command on a router / switch.

aaa authentication login default group tacacs+ local

1 REPLY
Cisco Employee

Re: Tacacs+ as primary...local user as backup

You can't do this on a PIX similarly to a router. Set it up for TACACS, and in the event the TACACS server is down, you can always still get into the PIX using the username "pix" and the enable password for the password.

Check out http://www.cisco.com/warp/public/110/authtopix.shtml and there's a section right at the bottom that explains this.

379
Views
0
Helpful
1
Replies
CreatePlease to create content