Well, I've been working on this off and on for a few months (yikes) now, and we are still using local authentication for UCS rather than tacacs. I am attaching a few screenshots of how things are set up that I believe encomasses everything, but am more than willing to provide more info if needed. The pics are - how the UCS looks, how AAA looks for the UCS, how the one user (me) I'm testing looks. I essentially did my best to follow the instructions in
but to no avail. Essentially, I believe that the UCS isn't even trying to contact the ACS server. I tested that by trying (unsuccessfully) to log in to UCS 10 times, and it not locking my tacacs account. Any help greatly appreciated, and more information requested will be provided.
Why do you need native HA: The native HA feature allows two Cisco DCNM
appliances to run as active and standby applications, with their
embedded databases synchronized in real time. Therefore, when the active
DCNM is not functioning, the standby DCNM will...
This document will provide screenshots to outline the steps to setup
TACACS+ configuration to ACI and also the configuration required on
Cisco ACS server. Please find the official Cisco guide for configuring
TACACS+ Authentication to ACI:
Is it supported or NOT supported? It's a frequently asked question.
Before APIC, release 2.3(1f), transit routing was not supported within a
single L3Out profile. In APIC, release 2.3(1f) and later, you can
configure transit routing with a single L3Out pr...