Security

Reply
Highlighted
Occasional Contributor II

CPPM stating all users are entering incorrect passwords when using Tacacs but passwords are corrrect

Hi

 

We are using CPPM 6.6.7.96909.  We have just had a issue where everyone who tried to log onto devices which are authenticated using tacacs they were rejected with the following error message:

 

 Authentication Request Messages 

Error Category:
Authentication failure
Error Code:
Password mismatch
 Alerts for this Request :
Tacacs serverIncorrect password for user='#*******' @ ARG(********).
Failed to authenticate user=#*****

The passwords that were entered were correct.  A few users and I were able to log onto other devices that don't use tacacs (server) with the same credentials.  We resolved the issue by clearing the cache on the auth source but I can't find what the original cause of the issue is.

 

Has anyone encountered this issue before?  Do you know what caused it? And is there a permanent fix for it?

 

Thanks,

Sean

Highlighted
Frequent Contributor I

Re: CPPM stating all users are entering incorrect passwords when using Tacacs but passwords are corr

Can you provide logs from Access Tracker for the failed cases?

Usually analyzing in details the Input tab, you can find the case why it happened. Please provide some more information from Access Tracker and maybe we can check.

Highlighted
Occasional Contributor II

Re: CPPM stating all users are entering incorrect passwords when using Tacacs but passwords are corr

Hi,

 

Is this what you're looking for? (See attached)

Highlighted
Frequent Contributor I

Re: CPPM stating all users are entering incorrect passwords when using Tacacs but passwords are corr

Actually i wanted a Print Screen from the Access Tracker page, and pressing on a Failed Use case for Tacacs+ on the input tab.

 

Example:

shpat_0-1587649777480.png

 

So a print screen of the information on the Input tab would be good to have so i can give it a check.

 

Highlighted
Occasional Contributor II

Re: CPPM stating all users are entering incorrect passwords when using Tacacs but passwords are corr

Ah OK,

 

Please see attached.  I have taken screen shots on all tabs.  See attached.

 

It doesn't give you much information

Frequent Contributor I

Re: CPPM stating all users are entering incorrect passwords when using Tacacs but passwords are corr

You have an @ Argument.

 

I suppose you are trying to authenticate using AD.  

Can you go the TACACS service and under the Authentication Tab, you have an option "Strip Username Rules". 

Try to do the following: 

shpat_0-1587651462147.png

 

And, when trying to login on the Network Device, try just:
username [Without the @domain]

password

 

 

Highlighted
Frequent Contributor I

Re: CPPM stating all users are entering incorrect passwords when using Tacacs but passwords are corr

Hi

 

Did you have the issue solved?

Highlighted
Occasional Contributor II

Re: CPPM stating all users are entering incorrect passwords when using Tacacs but passwords are corr

Hi,

 

Yes.  We think it's a bug with the version (6.6.7.96909).  Rebooting the server solved the issue.

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: