Send documentation comments to mdsfeedback-doc@cisco.com
17-8
Cisco MDS 9000 Family Troubleshooting Guide, Release 3.x
OL-9285-05
Chapter 17 Troubleshooting RADIUS and TACACS+
AAA Issues
User Authentication Fails
Symptom User authentication fails.
Table 17-2 User Authentication Fails
Symptom Possible Cause Solution
User authentication
fails.
Incorrect AAA method configured. Verify that the AAA method configured lists the
appropriate RADIUS or TACACs+ server-group as the first
one.
For RADIUS servers, see the “Verifying RADIUS
Configuration Using Fabric Manager” section on
page 17-4 or the “Verifying RADIUS Configuration Using
the CLI” section on page 17-4.
For TACACS+ servers, see the “Verifying TACACS+
Configuration Using Fabric Manager” section on
page 17-5 or the “Verifying TACACS+ Configuration
Using the CLI” section on page 17-5.
Incorrect authentication port
configured or incorrect server timeout
value.
Reconfigure the authentication port to match those
configured on the AAA server or set a higher timeout
value.
For RADIUS servers, see the “Verifying RADIUS
Configuration Using Fabric Manager” section on
page 17-4 or the “Verifying RADIUS Configuration Using
the CLI” section on page 17-4.
For TACACS+ servers, see the “Verifying TACACS+
Configuration Using Fabric Manager” section on
page 17-5 or the “Verifying TACACS+ Configuration
Using the CLI” section on page 17-5.
User not configured on the AAA server. Add the user name, password, and role to the AAA server.
Refer to your server documentation.
AAA server not configured in the
server group.
Add the appropriate AAA server to the configured server
group.
For RADIUS servers, see the “Verifying RADIUS Server
Groups Using Fabric Manager” section on page 17-9 or the
“Verifying RADIUS Server Groups Using the CLI” section
on page 17-9.
For TACACS+ servers, see the “Verifying TACACS+
Server Groups Using Fabric Manager” section on
page 17-9 or the “Verifying TACACS+ Server Groups
Using the CLI” section on page 17-10.
To Next Page
Loading...
Need help?
General