Tacacs+ - console access works, ssh does not

Peter Ross petrosssit at gmail.com
Wed Dec 16 11:22:29 AEDT 2015

Hi all,

I have not seen an "echo" of my mail in the inbox, nor any others.

But I heard my mail was distributed via list.

So this tests whether I am left in the dark now (I am using gmail and the
web interface for this on out of pure laziness)

and I also would like to know whether there where answers.

BTW: "service shell" was tried by me before too, it did not fix my problem.

I still cannot find an exhaustive list of service keywords, I dig into the
sources next (after I get my test bed back, I was one night away and
changes were made)


On Mon, Dec 14, 2015 at 4:03 PM, Peter Ross <petrosssit at gmail.com> wrote:

> Hi,
> I am installing TACACS+ on a CentOS7 server (to replace a Win 2003 based
> Tacacs)
> I could not find a Tacacs+ server in the repositories so I installed this
> one:
> http://www.shrubbery.net/tac_plus/
> Installation was not a problem, and this test configuration:
> key = <key>
> user = tester {
>           login = PAM
>           service = exec {
>                       default attribute = permit
>                       priv-lvl = 15
>           }
> }
> gives the user tester (local to the server) access on a HP Blade Center
> switch (a Nortel switch) via
> /c/sys/tacacs
> prisrv <ip>
> on
> cmap enabled
> if I use the serial console.
> A list of commands appears and I get a prompt.
> However, if I try ssh, the login seems to work but I do not get a list of
> commands and no prompt. The terminal is completely quiet after the login
> (but it stays connected).
> I played around a bit but have not been successful.
> Do you have an idea what may be missing?
> Thanks for answers
> Peter
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.luv.asn.au/pipermail/luv-main/attachments/20151216/a2dd4f10/attachment.html>

More information about the luv-main mailing list