[c-nsp] Is there an ability to remove TACACS via SNMP?

Robert D. Holtz - Lists robert.d.holtz at gmail.com
Mon Oct 16 11:50:39 EDT 2006


If you have SNMP write access then just jam in a new enable password,
waiting for TACACS to timeout, then login via the local credentials as
normal and jump to enable mode and do the "no aaa..." commands.


-----Original Message-----
From: cisco-nsp-bounces at puck.nether.net
[mailto:cisco-nsp-bounces at puck.nether.net] On Behalf Of
christopher.a.kane at jpmchase.com
Sent: Monday, October 16, 2006 10:12 AM
To: cisco-nsp at puck.nether.net
Subject: [c-nsp] Is there an ability to remove TACACS via SNMP?

How many times have you tried to troubleshoot an issue and have been stuck 
waiting for TACACS to timeout and authentication to revert to the router's 
local database? 

I'm no SNMP guru and have spent hours trying to find a way to remove the 
TACACS portion of AAA via an SNMP command. I've run across several other 
items related to editing AAA via SNMP but not the command authorization 
portions.

Any suggestions?

Thanks,
-chris

-----------------------------------------
This transmission may contain information that is privileged,
confidential, legally privileged, and/or exempt from disclosure
under applicable law.  If you are not the intended recipient, you
are hereby notified that any disclosure, copying, distribution, or
use of the information contained herein (including any reliance
thereon) is STRICTLY PROHIBITED.  Although this transmission and
any attachments are believed to be free of any virus or other
defect that might affect any computer system into which it is
received and opened, it is the responsibility of the recipient to
ensure that it is virus free and no responsibility is accepted by
JPMorgan Chase & Co., its subsidiaries and affiliates, as
applicable, for any loss or damage arising in any way from its use.
If you received this transmission in error, please immediately
contact the sender and destroy the material in its entirety,
whether in electronic or hard copy format. Thank you.

_______________________________________________
cisco-nsp mailing list  cisco-nsp at puck.nether.net
https://puck.nether.net/mailman/listinfo/cisco-nsp
archive at http://puck.nether.net/pipermail/cisco-nsp/



More information about the cisco-nsp mailing list