Technical Note: TACACS and Local Enable Password
Description
Solution
Issue: If an enable password is set in the Model Configuration and the switch authenticates using Cisco TACACS, Network Sentry cannot authenticate if TACACS is down.
Solution: If wanting to allow Network Sentry to login to the switch if TACACS is down, do the following:
1. Change the Network Sentry user on the switch to a level 15.
2. Remove the enable password from the switch's Model Configuration.
TACACS and Local Enable Password
Solution
Issue: If an enable password is set in the Model Configuration and the switch authenticates using Cisco TACACS, Network Sentry cannot authenticate if TACACS is down.
Solution: If wanting to allow Network Sentry to login to the switch if TACACS is down, do the following:
1. Change the Network Sentry user on the switch to a level 15.
2. Remove the enable password from the switch's Model Configuration.