Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

SF-300 TACACS+ Enable not working

Running  SF-300 24 port non-POE (model # SRW224G4-K9 V01) firmware 1.1.2.0

Configured TACACS+ support for login via TELNET and SSH.

CLI allows connection to non-privledged mode on TELNET via TACACS, but when Iattempting to enter privledge mode the connection is rejected.

Had to set the enable mode to use the enable password which is less than ideal.

See attached file for commands

Is anyone else having this issue?

  • Small Business Switches
2 REPLIES
New Member

SF-300 TACACS+ Enable not working

From CLI as a Priv15 user,

conf t

line telnet

no enable authentication

Hope this helps,

Iain.

New Member

SF-300 TACACS+ Enable not working

I tried "no enable authentication" as recommended and get this in my local log:

%AAA-W-REJECT: New ssh connection, source 10.37.6.124 destination 10.36.12.247  REJECTED

When putting back on "enable authentication ssh" tacacs show user $enab15$ trying to login. Can I change it to use the username accessing the system?

1362
Views
0
Helpful
2
Replies