Preview Tool

Cisco Bug: CSCvu94375 - Cisco DNA Center "ip http authentication aaa" commands missing after Provisioning

Last Modified

Jul 17, 2020

Products (1)

  • Cisco DNA Center

Known Affected Releases


Description (partial)

Cisco DNA Center running does not push "ip http authentication aaa" commands after provisioning a Catalyst 9300 switch running IOS-XE 16.12.2t. Only "ip http authentication local" is pushed.  The commands that are missing are "ip http authentication aaa login-authentication VTY_authen" and "ip http authentication aaa exec-authorization VTY_author".

This was observed in Cisco DNA Center 1.3.3.x, in either a single-node or 3-node cluster, managing a Catalyst 9300 switch running IOS-XE 16.12.2t, with the onboard eWLC (Catalyst 9800) enabled, and TACACS or RADIUS is configured in Cisco DNA Center.
Bug details contain sensitive information and therefore require a account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.