06-09-2016 12:23 PM - edited 06-09-2016 12:38 PM
I have a DS300b that I setup up tacacs in the GUI. Evidently tacacs on the switch is misconfigured and is not working as now I cannot login to the switch via tacacs or local credentials. I have consoled in the switch and every username I use it errors with cannot authenticate via tacacs. I have rebooted it and use password recovery but it still tries to use tacacs for auth. I am stuck altough I do have the config backed up. Is there anyway to bypass tacacs or remove it from config with first logging in the swtich. Any help would be appreciated.
Solved! Go to Solution.
06-10-2016 06:51 AM
That did it. I still cant get tacacs to work though. Using Cisco ACS server. Below is aaaconfig --show What am I missing?
RADIUS configuration does not exist.
LDAP configuration does not exist.
Position : 1
Server : 172.30.10.115
Port : 49
Secret : mysecret
Timeout(s) : 5
Primary AAA Service: TACACS+
Secondary AAA Service: Switch database
06-10-2016 09:20 AM
about Cisco ACS, unfortunately I'm not familiar with the Platform.
The config show coirrect, but can you please try with Auth-Protocol PAP instead CHAP ?