Tacacs authentication login with password input twice

Tacacs authentication login with password input twice
NewsGroups | Search | Tools
User Password
Register Now! Lost Password?
 comp.dcom.sys.cisco  Post an article  get this group's latest topics as an RSS feed add this group's latest topics to your My MSN content add this group's latest topics to your My Yahoo content  add this group's latest topics to your Google content  YahooMyWeb Yahoo!  Google Google  Windows Live Favorites Windows Live  del.icio.us del.icio.us  digg digg  Add to Netscape Netscape
Subject Author Date
Tacacs authentication login with password input twice megatrey2 06-25-2008
Posted by on June 25, 2008, 2:19 am
If you were  Registered and logged in, you could reply and use other advanced thread options
I'm using tacacs to authenticate and authorize users for shell access
to some routers. I have also a radius server to authenticate and
authorize another group of users. My problem is when my tacacs users
trying to ssh connect to my router, they will need to key in password
twice. Why do I need to login with password twice? The only thing i
can think of is, the 2nd password prompt is a secret?

I login with user priv 15 to the router, but i can't use priv 15
account.. why?

Please advise. Thanks.

Pure Networks
Posted by Trendkill on June 25, 2008, 7:16 am
If you were  Registered and logged in, you could reply and use other advanced thread options
On Jun 25, 2:19=A0am, megatr...@gmail.com wrote:
> I'm using tacacs to authenticate and authorize users for shell access
> to some routers. I have also a radius server to authenticate and
> authorize another group of users. My problem is when my tacacs users
> trying to ssh connect to my router, they will need to key in password
> twice. Why do I need to login with password twice? The only thing i
> can think of is, the 2nd password prompt is a secret?
>
> I login with user priv 15 to the router, but i can't use priv 15
> account.. why?
>
> Please advise. Thanks.

Twice during the authentication process, or once for authentication
and once to get into enable mode?

Posted by Scott Perry on June 25, 2008, 10:29 am
If you were  Registered and logged in, you could reply and use other advanced thread options
If you are using TACACS+ for login authentication, perhaps you have Cisco
ACS as well. There is a setting on ACS which puts the user directly into
enable mode at login.

-----
Scott Perry
Indianapolis, IN
-----

> I'm using tacacs to authenticate and authorize users for shell access
> to some routers. I have also a radius server to authenticate and
> authorize another group of users. My problem is when my tacacs users
> trying to ssh connect to my router, they will need to key in password
> twice. Why do I need to login with password twice? The only thing i
> can think of is, the 2nd password prompt is a secret?
>
> I login with user priv 15 to the router, but i can't use priv 15
> account.. why?
>
> Please advise. Thanks.



Similar ThreadsPosted
Re: TACACS+ authentication January 25, 2006, 8:39 am
TACACS+ authentication from Java March 1, 2005, 9:39 pm
tacacs-server key password February 28, 2006, 9:54 am
Input the username&password Automatically on the 802.1x client September 8, 2008, 11:07 pm
Re: login and password August 29, 2006, 10:40 pm
Re: login and password August 30, 2006, 12:59 am
pre-login / HTTPS Authentication February 18, 2008, 4:13 pm
can't set console login password March 18, 2005, 3:30 pm
AAA allowing local authentication with TACACS+ configured. June 26, 2006, 11:34 am
CiscoSecure ACS v. 3.3 user TACACS+ password choice defaults not LDAP April 18, 2007, 2:22 pm

other useful resources:
The Federal Communications Commission (FCC)
Telecommunications Industry Association
Electronic and Software Security Products and Services
International Telecommunication Union

Custom CGI Perl and PHP programming by 1-Script.com

Contact Us | Privacy Policy
The site map in XML format XML site map