<div dir="auto"><div>Fedora 26<br><div class="gmail_extra"><br><div class="gmail_quote">On Nov 21, 2017 6:48 PM, "heasley" <<a href="mailto:heas@shrubbery.net">heas@shrubbery.net</a>> wrote:<br type="attribution"><blockquote class="quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">Tue, Nov 21, 2017 at 06:35:39PM -0500, Andrew Villano:<br>
<div class="quoted-text">> I'm using file authentication, it should be reading directly from<br>
> /etc/passwd . The password does not contain quotes.<br>
<br>
</div>Then this would be a problem with your system libraries or whatever you<br>
used to create the password hash. because tacacs should be using the<br>
system lib to read the file. what is the o/s?<br>
<div class="elided-text"><br>
> On Nov 21, 2017 5:49 PM, "heasley" <<a href="mailto:heas@shrubbery.net">heas@shrubbery.net</a>> wrote:<br>
><br>
> > Tue, Nov 21, 2017 at 05:28:51PM -0500, Andrew Villano:<br>
> > > Certain special characters (I've noticed [ @; ] ) are not tolerated as a<br>
> > > user password in tac_plus.conf . When I change the system password for<br>
> > > rancid [user] (which tac_plus.conf reads from) to something without<br>
> > special<br>
> > > characters (eg. [A-z0-9] ), i'm able to login without a problem. It can't<br>
> > > be rancid [application] either because I get consistent experiences with<br>
> > > interactive ssh login.<br>
> ><br>
> > have you quoted those? "foo@bar:"<br>
> ><br>
> > > On Tue, Nov 21, 2017 at 5:00 PM, heasley <<a href="mailto:heas@shrubbery.net">heas@shrubbery.net</a>> wrote:<br>
> > ><br>
> > > > Tue, Nov 21, 2017 at 03:25:06PM -0500, Andrew Villano:<br>
> > > > > Found the problem. Special characters are not tolerated in passwords.<br>
> > > ><br>
> > > > in do_auth? not sure what you mean by special characters; be more<br>
> > > > specific.<br>
> > > ><br>
> ><br>
</div></blockquote></div><br></div></div></div>