Avaya Support Forums  

Go Back   Avaya Support Forums > Avaya Networking Products

Reply
 
Thread Tools Search this Thread Display Modes
  #1  
Old 04-03-2015, 06:47 AM
jacks232 jacks232 is offline
Aspiring Member
 
Join Date: Apr 2015
Posts: 1
jacks232 has 10 reputation points
Default ERS 4850GTS-PWR+ / TACACS+ Servers Unreachable - Local Authentication Not Working

Hi all,

We are trying to migrate our Avaya 4850GTS-PWR+ switches to our existing Global TACACS+ authentication platform but we are running into difficulties because the Avaya's refuse to do local authentication when the TAC+ servers become unreachable.

They output an error that the global authentication servers are unreachable and continue to prompt for username/password endlessly.

According to the Avaya documentation, this is what is supposed to happen:

"You can configure two TACACS+ servers, a primary server and a secondary server. If all servers are not reachable (no answers) then local authentication is done."

I know that this used to be an issue with RADIUS authentication until the "radius-server password fallback" command was added in later releases.

Are we missing something? Is there a way for us to set a TACACS server timeout value and then force local user/password authentication? The implementation is pretty useless if it cannot fallback to local authentication in the event of a network/TAC+ server outage.

Our configuration is pretty basic:

tacacs server host x.x.x.x key
tacacs authorization enable
tacacs authorization level all
tacacs accounting enable
cli password switch telnet tacacs


The 4850 switches are running FW 5.8.0.1 / SW v5.8.0.005

Many thanks in advance,

Mike
Reply With Quote
Reply

Thread Tools Search this Thread
Search this Thread:

Advanced Search
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump


All times are GMT -7. The time now is 04:52 AM.

This Forum is provided solely for the use and convenience of Avaya customers and partners. Use of the Forum is subject to the Terms and Use and Privacy Statement found at www.avaya.com. No other use is permitted. The Forum including all content posted is “AS IS” and Avaya expressly disclaims all warranties and/or guarantees as to its accuracy, reliability, usefulness, quality or non-infringement of intellectual property. Avaya reserves the right to remove any content posted on the Forum at any time and for whatever reason.

Avaya will not be liable for any content posted on this Forum, including, without limitation, any errors or omissions or for any losses or damages of any kind incurred as a result of use or reliance on any content, regardless of its origin.

You expressly understand and agree that you assume all risks associated with use or reliance on this content.