Security

Reply
New Contributor

Tacacs Access to Mellanox from Clearpass

Hi all

 

has anyone succsefully configures TACACs on a mellanox switch with clearpass, I need help , cannot get it right . tried with cisco settings but it didnt work........     

 

Thanks

 

Sven

Re: Tacacs Access to Mellanox from Clearpass

Could you be a bit more specific on where you currently struggle?

Have you been able to configure the Mellanox switch in such a way, that TACACS requests are being sent to ClearPass?

 

 

 

Occasional Contributor I

Re: Tacacs Access to Mellanox from Clearpass

I am having the same problem.  I can create a tacacs service and import it but I'm not sure what the services has to have in it for the mlnx-exec.

 

So I log in, it says I pass authenticaiton and the alert is shown and I get re-prompted for the password.

image.png

Occasional Contributor I

Re: Tacacs Access to Mellanox from Clearpass

BTW, I solved this issue.  I added this to the Tacacs Dictionary and specified this service in the profile.  I probably don't need the attribute, just the service...

    <TacacsServiceDictionary dispName="mlnx-exec:unknown" name="mlnx-exec:unknown">
      <ServiceAttribute dataType="String" dispName="protocol" name="protocol"/>
    </TacacsServiceDictionary>

mellanox.jpg

 

Highlighted
New Contributor

Re: Tacacs Access to Mellanox from Clearpass

Hi All , Thanks Phillip for your input , I figured it out , I had to export the TACACS dictionary first then add to the xml and import it back.  

Works like a charm.. Your a legend. Thank you

New Contributor

Re: Tacacs Access to Mellanox from Clearpass

Hi All and Phillip , it works perfectly Thank you

 

I exported the tacacs dictionary added the script you gave and it worked .

 

Your a legend thank you

Search Airheads
cancel
Showing results for 
Search instead for 
Did you mean: