Connectrix B-Series Firmware: FOS user authentication works but has no permissions when configuring user authentication with TACACS.NET server.
Summary: While configuring the Brocade switch for tacacs+ user authentication. User is then pointing to a tacacs+ server application called tacacs.net. User authentication passes but user is unable to run any commands. ...
This article applies to
This article does not apply to
This article is not tied to any specific product.
Not all product versions are identified in this article.
Instructions
Symptom: User logs in correctly but has no user permissions to run any commands.
Root Cause: tacacs.net application does not have the concept of Brocade SAN switch user roles which are needed to configure user roles such as admin role, etc. tacacs.net server is a proxy to a back-end LDAP server but the application is unable to "see" the user roles defined on the switch since ldapcfg --maprole cannot be used for tacacs+ configuration.
Workaround: User can use locally-defined user accounts or use LDAP protocol directly.
Resolution: Customer using non-support/non-tested tacacs.net app. Not a Brocade issue.
Root Cause: tacacs.net application does not have the concept of Brocade SAN switch user roles which are needed to configure user roles such as admin role, etc. tacacs.net server is a proxy to a back-end LDAP server but the application is unable to "see" the user roles defined on the switch since ldapcfg --maprole cannot be used for tacacs+ configuration.
Workaround: User can use locally-defined user accounts or use LDAP protocol directly.
Resolution: Customer using non-support/non-tested tacacs.net app. Not a Brocade issue.
Products
Connectrix, Connectrix B-Series HardwareArticle Properties
Article Number: 000022769
Article Type: How To
Last Modified: 08 Oct 2024
Version: 3
Find answers to your questions from other Dell users
Support Services
Check if your device is covered by Support Services.