From: Luu Hoang Dung (lhd.ccdzi@gmail.com)
Date: Wed Apr 11 2007 - 14:10:26 ART
I tried to use the *ip tacacs source-interface ethernet0/0 *
The result still is "authentication failed"
------------------------------
*From:* Greg Wendel [mailto:gwendel@gmail.com]
*Sent:* Wednesday, April 11, 2007 10:13 AM
*To:* Marvin Greenlee
*Cc:* CCDesire; Cisco certification
*Subject:* Re: Problem with ACS
I would guess your problem is that you are missing the ip tacacs
source-interface command
On 4/10/07, *Marvin Greenlee* < marvin@ipexpert.com> wrote:
Are there other devices in the data path between your router and the ACS
server?
Do you get the same response (connection is refused) if you telnet from the
router to the ACS server on TCP port 49 ?
Are you getting this message when you try an authentication from the router
locally (using the 'test aaa' command)?
Do you only get the 'connection refused' when trying to connect to the
router from somewhere else? If only when trying to connect to the router
from somewhere else, is there any configured access-class/ACL blocking
traffic to the router?
Are you able to authenticate to the ACS server from the router using RADIUS?
Marvin Greenlee, CCIE #12237 (R&S, SP, Sec)
Senior Technical Instructor - IPexpert, Inc.
"When Will You Be an IP Expert?"
marvin@ipexpert.com
http://www.IPexpert.com <http://www.ipexpert.com/>
-----Original Message-----
From: nobody@groupstudy.com [mailto:nobody@groupstudy.com] On Behalf Of
CCDesire
Sent: Tuesday, April 10, 2007 9:37 PM
To: 'Cisco certification'
Subject: Problem with ACS
Dear group,
I have the following error message every time I try to authenticate routers
to the Tacacs+ Server in Cisco Secure ACS: