Tacas should be setup so that if the TACAS server failed you would use the
local login.
aaa authentication login tacacs+ local
This will revert to local database if tacas is unavailable
-----Original Message-----
From: Brian Lodwick [mailto:[EMAIL PROTECTED]]
Sent: Friday, December 29, 2000 11:55 AM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: Re: TACACS and console port
I guess Kathy more accurately answered your question though. Christpher and
I were thinking of how you could create a backdoor, but as Kathy wrote if
there is no other way listed for authentication other than TACACS your
request for access would be denied.
>>>Brian
>From: "Ric Messier" <[EMAIL PROTECTED]>
>Reply-To: "Ric Messier" <[EMAIL PROTECTED]>
>To: <[EMAIL PROTECTED]>
>Subject: TACACS and console port
>Date: Fri, 29 Dec 2000 07:41:02 -0500
>
>Hi,
> Quick question, because I'm away from a lab that would give me the
ability
>to test this. If I have authentication on my console/aux ports set to
>TACACS
>and my TACACS server goes down, what happens if I connect to either of
>those
>ports (say the AUX port with a modem)? Do I get denied or allowed? ie, do
>we
>fail open or closed?
>
>Thanks,
>Ric
>
>_________________________________
>FAQ, list archives, and subscription info:
>http://www.groupstudy.com/list/cisco.html
>Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
_________________________________________________________________
Get your FREE download of MSN Explorer at http://explorer.msn.com
_________________________________
FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
_________________________________
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
