[j-nsp] Tacacs on Junos
Tom Storey
tom at snnap.net
Sun Sep 16 10:38:33 EDT 2012
When you set the password on the Juniper, did you by any chance
enclose the password text in "", e.g. "password" ?
If you did, the "" is encoded as part of the password, rather than
suggesting "everything inside quotes is the password" like it does
with other things (like interface descriptions.)
I hit that little doozy when I was configuring TACACs for the first
time, so thought I'd throw it out there.
Tom
On 16 September 2012 14:49, Mohammad Khalil <eng.mssk at gmail.com> wrote:
> Hi all
> I have mx240 , i want to configure tacacs authentication
> set system authentication-order tacplus
> set system tacplus-server x.x.x.x port 49 single-connection secret juniper
> source-address y.y.y.y
>
> Of course the server is reachable from the device
> I see in the log messages
> Failed password for mkhalil from 109.107.128.104 port 43262 ssh2
>
> Is there anything missing ?
>
> BR,
> Mohammad
> _______________________________________________
> juniper-nsp mailing list juniper-nsp at puck.nether.net
> https://puck.nether.net/mailman/listinfo/juniper-nsp
More information about the juniper-nsp
mailing list