WB I 5.1 Remote Session Authentication using TACACS+

I was running through this and keep getting % Error in authentication. instead of the % Access denied or % Authentication failed message one would normally receive when putting in the wrong enable password.  The correct enable password works fine - demostrated below.  Why would I receive the message below on an authentication failure as opposed to a config error?

--------------------------------------------

R2>en
Password:
% Error in authentication.

R2>en
Password:
R2#

--------------------------------------------

debug from R2:

Jun 28 16:24:40.565: AAA/AUTHEN/CONT (1167484653): continue_login (user='ADMIN')
Jun 28 16:24:40.565: AAA/AUTHEN(1167484653): Status=GETPASS
Jun 28 16:24:40.569: AAA/AUTHEN(1167484653): Method=tacacs+ (tacacs+)
Jun 28 16:24:40.569: TAC+: send AUTHEN/CONT packet id=1167484653
Jun 28 16:24:40.769: TAC+: ver=192 id=1167484653 received AUTHEN status = FAIL
Jun 28 16:24:40.769: AAA/AUTHEN(1167484653): Status=FAIL
Jun 28 16:24:40.769: AAA/MEMORY: free_user (0x83A8D5AC) user='ADMIN' ruser='NULL' port='tty0' rem_addr='async' authen_type=ASCII service=ENABLE priv=15 vrf= (id=0)

Any explanation of this behavior is most appreciated.

Thank you

Comments

Sign In or Register to comment.