Tacacs+ - console access works, ssh does not

Peter Ross petrosssit at gmail.com
Wed Dec 16 11:36:06 AEDT 2015


P.S. luv-main is "dead". I do not get mails anymore.

On Wed, Dec 16, 2015 at 11:22 AM, Peter Ross <petrosssit at gmail.com> wrote:

> Hi all,
>
> I have not seen an "echo" of my mail in the inbox, nor any others.
>
> But I heard my mail was distributed via list.
>
> So this tests whether I am left in the dark now (I am using gmail and the
> web interface for this on out of pure laziness)
>
> and I also would like to know whether there where answers.
>
> BTW: "service shell" was tried by me before too, it did not fix my problem.
>
> I still cannot find an exhaustive list of service keywords, I dig into the
> sources next (after I get my test bed back, I was one night away and
> changes were made)
>
> Thanks
> Peter
>
>
> On Mon, Dec 14, 2015 at 4:03 PM, Peter Ross <petrosssit at gmail.com> wrote:
>
>> Hi,
>>
>> I am installing TACACS+ on a CentOS7 server (to replace a Win 2003 based
>> Tacacs)
>>
>> I could not find a Tacacs+ server in the repositories so I installed this
>> one:
>>
>> http://www.shrubbery.net/tac_plus/
>>
>> Installation was not a problem, and this test configuration:
>>
>> key = <key>
>>
>> user = tester {
>>
>>           login = PAM
>>           service = exec {
>>                       default attribute = permit
>>                       priv-lvl = 15
>>           }
>>
>> }
>>
>> gives the user tester (local to the server) access on a HP Blade Center
>> switch (a Nortel switch) via
>>
>> /c/sys/tacacs
>> prisrv <ip>
>> on
>> cmap enabled
>>
>> if I use the serial console.
>>
>> A list of commands appears and I get a prompt.
>>
>> However, if I try ssh, the login seems to work but I do not get a list of
>> commands and no prompt. The terminal is completely quiet after the login
>> (but it stays connected).
>>
>> I played around a bit but have not been successful.
>>
>> Do you have an idea what may be missing?
>>
>> Thanks for answers
>> Peter
>>
>>
>>
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.luv.asn.au/pipermail/luv-main/attachments/20151216/56715c32/attachment.html>


More information about the luv-main mailing list