Pix Authentication

sacomputerguy · Jun 11, 2004

Hello,

I'm trying to configure my Pix525 FOS 6.3 to authenticate using TACACS+. I've configured the pix to point to my TACACS+ server as follows:

aaa-server tac protocol tacacs+
aaa-server tac (inside) host 66.x.x.x (key) timeout 10
aaa authentication include telnet outside 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 tac
aaa authentication include telnet inside 0.0.0.0 0.0.0.0 0.0.0.0 0.0.0.0 tac

I try to test it and just get the regular login, any ideas?

Thanks

308win · Jun 13, 2004

You don't need the includes, I think that is to force authentication for traffic passing through the firewall.

All you need it this command.

aaa authentication serial|telnet|ssh|http|enable console <server_tag>

which in your case will probably be:

aaa authenticate telnet tac

sacomputerguy · Jun 17, 2004

Thanks for the help but I've tried to leave out the "include" although the pix will add it to the statement and I am still unable to authenticate using tacacs.....

If any one has any other ideas I'm game.

Thanks

Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Pix Authentication

sacomputerguy

IS-IT--Management

308win

MIS

sacomputerguy

IS-IT--Management

Similar threads

Part and Inventory Search

Sponsor