ćwiczę sobie AAA w oparciu o ACS + Cisco router / PIX. O ile z Radiusem problemów nie ma, schody pojawiają się przy próbie uruchomienia TACASA.
Wycinek z konfiga na PIXie:
Kod: Zaznacz cały
PixP# sh run aaa
aaa authentication serial console LOCAL
aaa authentication telnet console TAC LOCAL
PixP# sh run aaa-server
aaa-server TAC protocol tacacs+
aaa-server TAC host 10.0.4.254
key cisco007
Kod: Zaznacz cały
PixP# mk_pkt - type: 0x1, session_id: 2147483657
user: radek
Tacacs packet sent
Sending TACACS Start message. Session id: 2147483657, seq no:1
Received TACACS packet. Session id:1906675948 seq no:2
tacp_procpkt_authen: ERROR
TACACS Session finished. Session id: 2147483657, seq no: 1
mk_pkt - type: 0x1, session_id: 2147483657
user: test007
Tacacs packet sent
Sending TACACS Start message. Session id: 2147483657, seq no:1
Received TACACS packet. Session id:1389416408 seq no:2
tacp_procpkt_authen: ERROR
TACACS Session finished. Session id: 2147483657, seq no: 1
Jakieś sugestie z waszej strony?