Montag, August 16, 2010

Cisco ASA and Tacacs+

How to use Tacacs+ on Cisco ASA

          aaa-server TACACS+ protocol tacacs+
          aaa-server TACACS+ (intern) host X.X.X.X
                     key YYYYXXXYYY
          no aaa authentication http console LOCAL
          no aaa authentication ssh console LOCAL
          aaa authentication http console TACACS+ LOCAL
          aaa authentication ssh console TACACS+ LOCAL
          aaa authentication enable console TACACS+ LOCAL
          aaa authorization command TACACS+ LOCAL

If you have allready configured ssh you might see something like

          asa1(config)# aaa authentication ssh console TACACS+ LOCAL
          Range already exists.

If you feel this helps a bit or may be not ? Please leave a comment.

Keine Kommentare: