Forum Discussion

Nimbostratus

Jun 28, 2019

Force TACACS log on

Hi all I've enabled Tacacs on the F5 BIG-IP version 12.1 and all is working, but people can still login as root account if they know the username and password. With Cisco you can have a local ...

big-ip

security

Dario_Garrido

Noctilucent

Jun 28, 2019

Hello Renato.

admin/root account are the only users available to use local DB authentication (when TACACS/RADIUS/... is enabled)

You can avoid this situation performing this procedure:

https://support.f5.com/csp/article/K15632

KR,

Dario.

DevCentral Quicklinks

* Getting Started on DevCentral
* Community Guidelines
* Community Terms of Use / EULA
* Community Ranking Explained
* Community Resources
* Contact the DevCentral Team
* Update MFA on account.f5.com

Discover DevCentral Connects

* Podcasts
* Social Channels
* Video Streaming

GitHub Awesome-F5

Forum Discussion

Force TACACS log on

Jonathan - March 2026 Featured Member

F5 AppWorld 2026 Las Vegas - iRules Contest Winners!

2026 F5 DevCentral MVP Announcement

Recent Discussions

Recommendation for Adv. Lab

Cloud Apps Protection

Illigal Parameter addition as custom signature set wanted to Unblock

CPU load when Prometheus is scraping metrics from F5 BIG-IP LTM

Connection Rate Limit with log output

Related Content

TACACS+ External Monitor (Python)

Extend visibility - BIG-IP joins forces with CrowdStrike

Logging/Blocking possible prompt injection

Forwarding Logs to SIEM Tools via HTTP Proxy for F5 Distributed Cloud Global Log Receiver

SSH Brute Force Protection with SSH Proxy

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS