Guest

Preview Tool

Cisco Bug: CSCvh94295 - Tacacs server does not fall back to the secondary Server if the first timeout on the pass resp

Last Modified

Jul 26, 2019

Products (1)

  • Cisco Catalyst 3850 Series Switches

Known Affected Releases

3.7(0)

Description (partial)

Symptom:
Tacacs configuration as below

aaa authentication login vty group tacacs+ enable
tacacs-server host 1.1.1.1 key xxxx
tacacs-server host 2.2.2.2 key xxxx
line vty 0 4
login authentication vty

authentication will not fallback to the secondary tacacas server if the first timed out midway on the getpassword
and it will fall back to the Enable method

Conditions:
having 2 Tacacs server configured  for authentication and enable method as fallback method.
first server is timing out after we put the username .
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.