Hi Please check if you are hitting the tacacs from your router, also check the source address, security rule on the tacacs.
Walaa Abdel Razzak | Snr. Networks Consultant -----Original Message----- From: Bill Blackford [mailto:bblackf...@nwresd.k12.or.us] Sent: Sunday, August 09, 2009 5:59 PM To: Walaa Abdel razzak Cc: juniper-nsp@puck.nether.net Subject: RE: [j-nsp] tacplus on EX3200 authentication-order [ tacplus password ]; -b -----Original Message----- From: Walaa Abdel razzak [mailto:wala...@bmc.com.sa] Sent: Sunday, August 09, 2009 7:51 AM To: Bill Blackford; juniper-nsp@puck.nether.net Subject: RE: [j-nsp] tacplus on EX3200 Hi Did you check the authentication order on the router? Tacacs log on the server? BR, Walaa Abdel Razzak This email and any attached files are confidential and intended solely for the use of the individual to whom they are addressed. If you received this email in error or you are not the named addressee, you should not disseminate, distribute or copy this e-mail. Please notify the sender immediately by e-mail and delete this e-mail from your system.If you are not the intended recipient you are notified that disclosing, copying,distributing or taking any action in reliance on the contents of this information is strictly prohibited. -----Original Message----- From: juniper-nsp-boun...@puck.nether.net [mailto:juniper-nsp-boun...@puck.nether.net] On Behalf Of Bill Blackford Sent: Sunday, August 09, 2009 5:23 PM To: juniper-nsp@puck.nether.net Subject: [j-nsp] tacplus on EX3200 I'm struggling with getting tacplus working on my EX's and was hoping someone on the list has successfully done this. tacplus-server { ###.###.###.### { port 49; secret "<my secret>"; ## SECRET-DATA timeout 5; single-connection; } } I currently have local accounts with two profiles. super-user and: class NOC { permissions [ view view-configuration ]; I would want to integrate these two profiles into tacacs as well, but for now I'd like to just get it to authenticate. Tacacs is doing passthough to AD and works fine with Cisco or extreme devices. What am I missing? Thanks -b -- Bill Blackford Senior Network Engineer Technology Systems Group Northwest Regional ESD my /home away from home _______________________________________________ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp __________ Information from ESET Smart Security, version of virus signature database 4223 (20090708) __________ The message was checked by ESET Smart Security. http://www.eset.com __________ Information from ESET Smart Security, version of virus signature database 4223 (20090708) __________ The message was checked by ESET Smart Security. http://www.eset.com __________ Information from ESET Smart Security, version of virus signature database 4223 (20090708) __________ The message was checked by ESET Smart Security. http://www.eset.com __________ Information from ESET Smart Security, version of virus signature database 4223 (20090708) __________ The message was checked by ESET Smart Security. http://www.eset.com _______________________________________________ juniper-nsp mailing list juniper-nsp@puck.nether.net https://puck.nether.net/mailman/listinfo/juniper-nsp