Hello
We are deploying a centralized authentication method in our environment, and I am running into some issues with tacacs server. I have a router in out lab that is local to the network (meaning it resides on the same subnet as the tacacs server 10.10.250.0 network) I am able to authenticate the logon information through the tacacs on that router but my issue is that I cant authenticate the remote router residing on 10.20.245.0 network. When I try to telnet to it it asks me for the local database username and password. When I try to telnet to it via port 49 (tacacs port) I get connection refused by remote host. we allow tcp/udp any any in and out, not blocking any ports on the network. What could be the issue here? Below is the router config for tacacs
the configuration is identical on both local and remote router.. any suggestions?
Thanks
We are deploying a centralized authentication method in our environment, and I am running into some issues with tacacs server. I have a router in out lab that is local to the network (meaning it resides on the same subnet as the tacacs server 10.10.250.0 network) I am able to authenticate the logon information through the tacacs on that router but my issue is that I cant authenticate the remote router residing on 10.20.245.0 network. When I try to telnet to it it asks me for the local database username and password. When I try to telnet to it via port 49 (tacacs port) I get connection refused by remote host. we allow tcp/udp any any in and out, not blocking any ports on the network. What could be the issue here? Below is the router config for tacacs
Code:
aaa new-model
aaa authentication login default group tacacs+ local
aaa authentication enable default group tacacs+ enable
aaa accounting exec default start-stop group tacacs+
line vty 0 4
login authentication default
tacacs-server host 10.10.250.51
tacacs-server key 15261E1E0A2F390727212515454245155
ip tacacs source-interface Loopback12
the configuration is identical on both local and remote router.. any suggestions?
Thanks