Hi!<BR><BR>I have a Tacacs+ on Debian server.<BR>The version of tac-plus is
F4.0.4.alpha.<BR><BR>There are following lines in the config file:<BR><BR>user =
test2 {<BR>member = admins<BR>login = nopassword<BR>}<BR><BR>group = admins
{<BR>before authorization "/etc/tac-plus/script $user $name
$address".<BR>default service = permit<BR><BR>cmd = ip {<BR>. deny
domain-lookup<BR>. permit .*<BR>}<BR><BR>service = exec {<BR>. priv-lvl =
15<BR>. idletime = 30<BR>}.<BR>}<BR><BR>When I try to start tacacs server I
get:<BR># /etc/init.d/tac-plus restart<BR>Restarting Tacacs+ server: Error:
Unrecognised keyword default for user on line 49<BR>tac_plus.<BR><BR>Line 49 is
'default service = permit'.<BR>Why is it wrong?<BR><BR>But. if to change the
order of lines to following:<BR>...<BR>group = admins {<BR>default service =
permit<BR>before authorization "/etc/tac-plus/script $user $name
$address".<BR>...<BR><BR>Tacacs server starts correctly.<BR>But when I login to
cisco and type any command I get: Command authorization failed.<BR>But, default
service = permit is in config!!.<BR><BR>Why this happens and how to fix it
?<BR><BR><BR>Thank you for attention..<BR>Bye.<BR><BR><BR>