HPE Community
Switches, Hubs, and Modems
1753513 Members
5174 Online
108795 Solutions
New Discussion

Re: TACACS+ on 4100gl question

 
SOLVED
Go to solution
Stuart Teo
Trusted Contributor

‎02-03-2004 05:06 AM

‎02-03-2004 05:06 AM

TACACS+ on 4100gl question

I have my 4100gl setup as follow:

Telnet=TACACS+, Secondary=Local
Enable=TACACS+, Secondary=Local

When I did a telnet, I authenticated fine and logged on as OPERATOR.

When I tried an enable, the same userid/password didn't want to work.

Is it a Procurve limitation or a TACACS+ limitation?
If a problem can be fixed, there's nothing to worry. If a problem can't be fixed, worrying ain't gonna help. Bottom line: don't worry.
0 Kudos
1 REPLY 1
Gonzo Granello
Valued Contributor

‎02-06-2004 06:13 PM

‎02-06-2004 06:13 PM

Solution

Re: TACACS+ on 4100gl question

ther is an option in the TACACS server that need to be set to allow "enable" otherwise the server will not authenticate that user. This is a extra security measure to prevent open doors since without that option anyone authenticated could configure the switch. That also means this is neither a ProCurve nor a TACACS limitation. It's really a feature.

///A
most time the day i have to mask my contempt for the a-holes in charge......
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.