[tac_plus] No priviledge prompt
heasley
heas at shrubbery.net
Tue Nov 14 21:17:07 UTC 2017
Tue, Nov 14, 2017 at 05:27:26PM +0300, Ritah Mulinde:
> Hello everyone
>
> i have added my switch ip to my tacac+ server conf file for AAA
> authentication
>
> so far i have 2 switches added to the conf file tac_plus.conf with syntax
>
> acl = default {
> permit = x\.x\.x\.x
> permit = y\.y\.y\.y
> }
>
>
> However, tacac+ authentication only works perfect with switch x.x.x.x but
> with y.y.y.y, i manage to log in with the same user as used to log into
> switch x.x.x.x but get a prompt with no privileges yet the sure has
> privilege 15. Am i missing something?? is tac_plus.conf the only file where
> i need to add the router ip or is there another file??
the switch also require configuration for the priv-lvl AVP to be accepted
from the tacacs server.
More information about the tac_plus
mailing list