cancel
Showing results for 
Search instead for 
Did you mean: 

TACACS+ authorization with firmware 9.0.xx

blanalex
New Contributor

I upgraded my switch from firmware 08.0.90d to the 09.0.xx series and the aaa commands have changed quite a bit. Now my regular user can log in but  can't get to the privileged mode (enable mode), I must use the local root/super account.

What I had before the upgrade:

aaa authentication login default local tacacs+ enable
aaa authentication login privilege-mode
aaa authorization exec default tacacs+
aaa accounting commands 0 default start-stop tacacs+
aaa accounting exec default start-stop tacacs+
aaa accounting system default start-stop tacacs+
enable aaa console
tacacs-server host 192.168.33.253
tacacs-server key 2 [redacted password hash]

And after after the upgrade:

aaa authentication login default local tacacs+
aaa authentication enable default tacacs+ local
aaa authorization exec default tacacs+
aaa accounting commands 0 default start-stop tacacs+
aaa accounting exec default start-stop tacacs+
aaa accounting system default start-stop tacacs+
tacacs-server host 192.168.33.253
tacacs-server key 2 [redacted password hash]

What am I doing wrong?

0 REPLIES 0