08-04-2019 06:48 PM
I am trying to setup TACACs authentication against ClearPass on a Mobility Controller running version 22.214.171.124.
I might be missing something, but it seems the Controller is only attempting to authenticate users locally. I've confirmed this by doing a 'show log security' and there is no evidence that the Controller is passing Authentication Reqests to ClearPass.
My configuration for AAA is below:
ip tacacs source-interface vlan 10 ! aaa tacacs-accounting server-group ClearPass-TACACs command all mode enable ! aaa authentication-server tacacs "aruba-cp-01-TACACS" host "10.0.10.11" key 785ee4a4bce8e3c104ff01e1b681fbdb5c028851fbe3e296 session-authorization source-interface vlan 10 ip6addr :: ! aaa server-group "ClearPass-TACACs" auth-server aruba-cp-01-TACACS ! aaa authentication mgmt server-group "ClearPass-TACACs" !
Solved! Go to Solution.