Solved

ACServer 4.1 can't get enable access via telnet/ssh now?

Posted on 2010-09-12
1
1,607 Views
Last Modified: 2012-08-13
Hello,
  I just implimented a ACServer 4.1 on my network. I am using an ASA 5520 with TACACS+ authentication. I did something recently and now I can't authenticate to get to enable access via telnet/ssh. I have ACServer querying active directory to authenticate my users.

here's what I know. My AD account is a domain admin. I was previously setup correctly so that I can get into the device via telnet/ssh/asdm. I am able to connect with full access to the ASDM using my AD username and password. I am not setup as a local user on the ASA. I am able to actually log into the ASA via telnet/ssh but when I use the enable command I get a password box. I used to use my AD password and was able to get in but not it won't let me. I also tried a local user on the ASA and same thing. ON the ACServer under reports and activity - failed attempts - I see the following errror in regards to my enable attempt.

ACS password invalid.

I've tried every password imaginable! where should I look?


Could this have anythign to do with it? Privlege level 0 on the enable access?
 ASDM
0
Comment
Question by:jbla9028
1 Comment
 
LVL 1

Accepted Solution

by:
jbla9028 earned 0 total points
ID: 33657253
disregard. I figured it out. under the ACS under the user there's an option list as TACACS+ Enable password for some reason it got changed for all users to use sperate passwrod it should be on use external databse password - windows database.

0

Featured Post

PRTG Network Monitor: Intuitive Network Monitoring

Network Monitoring is essential to ensure that computer systems and network devices are running. Use PRTG to monitor LANs, servers, websites, applications and devices, bandwidth, virtual environments, remote systems, IoT, and many more. PRTG is easy to set up & use.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
Open a port on Cisco Router 1941 23 40
Cisco Switch Port Security 2 44
Connecting to CISCO 4402 WLC 3 30
cisco sg 200 trunking 4 24
This is about downgrading PIX Version 8.0(4) & ASDM 6.1(5) to PIX 7.2(4) and ASDM 5.2(4) but with only 64MB RAM and 16MB flash. Background: You have a Cisco Pix 515E which was running on PIX 7.2(4) and its supporting ASDM 5.2(4) without any i…
Quality of Service (QoS) options are nearly endless when it comes to networks today. This article is merely one example of how it can be handled in a hub-n-spoke design using a 3-tier configuration.
Both in life and business – not all partnerships are created equal. As the demand for cloud services increases, so do the number of self-proclaimed cloud partners. Asking the right questions up front in the partnership, will enable both parties …
As a trusted technology advisor to your customers you are likely getting the daily question of, ‘should I put this in the cloud?’ As customer demands for cloud services increases, companies will see a shift from traditional buying patterns to new…

813 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

11 Experts available now in Live!

Get 1:1 Help Now