Hello Group,
After posting my previous reply, I realized that the enable authentication is not working at all with 'priv-lvl = 15'.
After my initial login to the router, it takes me to enable mode. When I try disable then enable, the router gives me the following message:
Code:
% Error in authentication.
I believe this means I have problem with my enable settings.
I updated my tac_plus.conf user settings to:
Code:
user = user1 {
login = PAM
enable = PAM
member = netadmin
}
After reload I get the following error:
Code:
expecting 'file', 'cleartext', 'nopassword', or 'des' keyword after 'enable ='
I believe the version of the TACACS+ I am using is incompatible with PAM for enable passwords.
Is there a work around to get enable authentication working with PAM?
suraty