[tac_plus] Tacacs and MRV Labdadriver
heasley
heas at shrubbery.net
Tue Jun 12 06:36:24 UTC 2012
Tue, Jun 12, 2012 at 06:20:26AM +0000, Peter Tavenier:
> > -----Original Message-----
> > From: heasley [mailto:heas at shrubbery.net]
> > Sent: maandag 11 juni 2012 17:09
> > To: Peter Tavenier
> > Cc: tac_plus at shrubbery.net
> > Subject: Re: [tac_plus] Tacacs and MRV Labdadriver
> >
> > Mon, Jun 11, 2012 at 09:16:48AM +0000, Peter Tavenier:
> > > Hi,
> > >
> > > Does anyone on the list have experience with Tacacs and MRV Labdadriver
> > 800?
> > > We're running tac_plus on linux, but I don't get is working.
> > >
> > > We get message like:
> > > Tue May 8 08:05:30 2012 [1182]: connect from 192.168.x.x [192.168.x.x]
> > > Tue May 8 08:05:30 2012 [1182]: pap-login query for 'admin' unknown from
> > 192.168.x.x rejected
> > > Tue May 8 08:05:30 2012 [1182]: login failure: admin 192.168.x.x
> > (192.168.x.x) unknown
> > >
> > > The "from 'admin' unknown" sound weird to me. Any suggestions where to
> > look at?
> >
> > that should be more like "pap-login query for '%s' port %s from %s %s".
> > its probably your configuration; perhaps missing a password source for
> > pap service.
> >
> > user = foo {
> > pap = file ....
> > }
>
> Thanks for the quick response. I have a configuration like:
>
> user = foo {
> login = des ...
> pap = des ...
> member = groupx
> name = "foo bar"
> }
>
> Should I use a file instead of 'des ...'? What should be in that file?
that should be fine. enable more debugging, specify -d multiple times or
OR them. perhaps you are missing 'default authorization'.
More information about the tac_plus
mailing list