RE: Problem with ACS

From: Luu Hoang Dung (lhd.ccdzi@gmail.com)
Date: Wed Apr 11 2007 - 14:11:31 ART

Next message: Todd, Douglas M.: "RE: HSRP - Default Gateway"
Previous message: Luu Hoang Dung: "RE: Problem with ACS"
Maybe in reply to: CCDesire: "Problem with ACS"
Next in thread: Marvin Greenlee: "RE: Problem with ACS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi Vince, there is no ACL on the routers and there isn't any firewall on the
ACS server either.

------------------------------

*From:* Vince Mashburn [mailto:cciegroupstudy@gmail.com]
*Sent:* Wednesday, April 11, 2007 8:56 PM
*To:* CCDesire
*Subject:* Re: Problem with ACS

Do you have a ACL blocking the TCP port for TACACS+?

On 4/10/07, *CCDesire* <lhd.ccdzi@gmail.com> wrote:

Dear group,

I have the following error message every time I try to authenticate routers
to the Tacacs+ Server in Cisco Secure ACS:

Connection is refused by remote host

I tried different ways to fix this problem but still unsuccessful.

Router-to-be-authenticated can ping Server, all firewall on server are
closed (ACS with W2K server).

The hostname, the IP and the shared-key for the router is correctly
configured.

This is what I configured about authentication:

Aaa new-model

Aaa authen login default group tacacs local

Tacacs-server host 206.222.152.1 single

Tacacs-server key ventu

Pls help me troubleshoot this problem.

--
Internal Virus Database is out-of-date.
Checked by AVG Free Edition.
Version: 7.5.446 / Virus Database: 268.18.17/731 - Release Date: 3/23/2007
3:27 PM

Next message: Todd, Douglas M.: "RE: HSRP - Default Gateway"
Previous message: Luu Hoang Dung: "RE: Problem with ACS"
Maybe in reply to: CCDesire: "Problem with ACS"
Next in thread: Marvin Greenlee: "RE: Problem with ACS"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.4 : Tue May 01 2007 - 08:28:35 ART