Forum Discussion

Mohanish_169493's avatar
Mohanish_169493
Icon for Nimbostratus rankNimbostratus
Jul 14, 2015

Need to configure TACACS+ on LTM BIG-IP 11.4.1

Hi,

 

I an configuring TACACS+ on LTM BIG-IP 11.4.1 using ACS 2.6. However it doesnt seem to work. PLease if someone can let me know if ACS2.6 is supported. Also id possible someone can guide how to configure

 

On the ACS I have created a user group and I am using the custom attribute F5-LTM-User-Info-1=adm under the F% common

 

Also on the F5 i have defined this string But this doesnt seem to work On the ACS I am getting the logs stating "Service not supported" Also on the F5 I am getting Authorization failure logs.

 

Please if someone can guide If someone has successfully configured TACACS+ using ACS2.6 that would be superb if he could let me know the steps

 

  • I enabled tacacs+ for BigIP LTM 11.6.0 3.0.412 last week against ACS5.5. It worked right away with below configuration.

     

    Under System ›› Users : Authentication I put following settings:

     

    • User Directory Remote - TACACS+
    • Encryption Enabled
    • Service Name ppp
    • Protocol Name ip
    • Authentication Authenticate to first server
    • Accounting Information Send to first available server

    And of course the tacacs+ servers with their shared secret.

     

    Are you sure you are running ACS2.6? Because this is quite an old release and end of support for more than 10 years...