[j-nsp] Juniper TACACS configuration

Kristian Larsson kristian at spritelink.se
Fri Mar 30 12:11:56 EST 2007


Hey!

I'm having a small configuration problem with a
Juniper router, I've tried setting up TACACS with
the following configuration options:

system {
	authentication-order tacplus;
	tacplus-server {
		1.3.3.7 {
			secret
			"$9$R)GAMrAMDSFMK#MKMASKDMCASDMC"; ## SECRET-DATA
			source-address 10.0.0.1;
		}
	}
}

When trying to login I get:
kll at carmen ~ $ ssh kll at gbg2                                                                                                                                          
kll at gbg2's password:                                                                                                                                             
Password                                                                                                         
Login incorrect                                                                                                                                                      
login: kll                                                                                                                                                           
Password:                                                                                                                                                            
                                                                                                                                                                     
If the user is also configured as a local user it works but 
not if he's just configured on the TACACS server.
The TACACS, (tac_plus version F4.0.4.8) works just fine with
 a bunch of Cisco machines. What have I done wrong ?

 Cheers, 
    Kristian.

-- 
Kristian Larsson                                   KLL-RIPE
Network Engineer                       SpriteLink [AS39525]
+46 704 910401			     kristian at spritelink.se


More information about the juniper-nsp mailing list