This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
RUCKUS Self Help |   ASK the Pack
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Local Account Works on Member But Not on Master of Stack

chell_7zwe
New Contributor II

‎12-06-2022 11:25 AM

Hello.  I was testing my local account today via console, aaa server not being available, and could only logon if I connected to the member switch.  I have a stack with an ICX7450-48P and ICX7450-24P.  If I issue the show stack the 48P is the role of active and the 24P is the role of standby.  Both are running 8095G switch code and both have the same boot monitor of 10.1.24.  Any ideas why I'm only able to logon with the local account if I'm consoled into the member switch?  Thanks.

0 Kudos
3 REPLIES 3

BenBeck
Moderator
Moderator

‎12-06-2022 11:30 AM - edited ‎12-06-2022 11:31 AM

What does your aaa configuration look like? It sounds like the master may think the aaa server is available. You may want to open a support case to get this looked at (see my signature).

 

Ben Beck, RCNA, RCNI, Principal Technical Support Engineer
support.ruckuswireless.com/contact-us
0 Kudos

chell_7zwe
New Contributor II

‎12-06-2022 11:35 AM

Hello.  This is the output of the AAA.

#sh run | i aaa
aaa authentication web-server default local
aaa authentication enable default tacacs+ local
aaa authentication dot1x default radius
aaa authentication login default tacacs+ local
aaa authentication login privilege-mode
aaa authorization commands 0 default tacacs+ none
aaa authorization coa enable
aaa authorization exec default tacacs+ none
aaa accounting commands 0 default start-stop tacacs+ none
aaa accounting exec default start-stop tacacs+ none
aaa accounting dot1x default start-stop radius
aaa accounting mac-auth default start-stop radius
aaa accounting system default start-stop tacacs+ none
enable aaa console

tacacs-server host 1.1.1.1
tacacs-server host 2.2.2.2
tacacs-server key 2 y7y7y7y7y7y7y7y7y7y7y

0 Kudos

BenBeck
Moderator
Moderator
In response to chell_7zwe

‎12-06-2022 12:28 PM

Got it. It's hard to say what is happening there. It would seem the active unit likely still trying to use first method of auth. Please open a case and an engineer can help deep-dive into this for you. 

 

Ben Beck, RCNA, RCNI, Principal Technical Support Engineer
support.ruckuswireless.com/contact-us
0 Kudos
Copyright © 2024 Khoros, LLC