Cisco Switching/Routing :: Catalyst 3750X Is Caching Tacacs Password Or Not Asking For Password
Aug 8, 2012
the following information before:
Switch: WS-C3750X-48P (Stack with 2 Members)
IOS: 12.2(58)SE2
Lic: IPBASEK9
[Code]....
Since i added another Member to the Stack, i'm facing the following problem: When i login with my tacacs user account, i will not be asked for the password. The same thing is for the tacacs account of my colleague, after entering the username he is logged in. It seems for me, that the passwords are cached only for this Switch.
View 3 Replies
ADVERTISEMENT
May 17, 2012
the following information before:
Switch: WS-C3750X-48P (Stack with 2 Members)
IOS: 12.2(58)SE2
Lic: IPBASEK9
uptime: rebooted this night
[code]....
Since i added another Member to the Stack, i'm facing the following problem:When i login with my tacacs user account, i will not be asked for the password.The same thing is for the tacacs account of my colleague, after entering the username he is logged in.It seems for me, that the passwords are cached only for this Switch.
View 3 Replies
View Related
Aug 30, 2012
I have a customers Catalsyt 2950 switch come in for the configuration to be cleaned to factoy default, using the link below removed the customers banner and login information whitch worked
[URL]
When i restart the switch and enter Enable mode I'm prompted with the password which i used when following the link above,
I want to remove all passwords so when the switch is redeployed to the next site who ever the engineer is that is going to be reconfiguring the switch is able to access privlage mode with out the password promt.
View 2 Replies
View Related
Jun 7, 2012
I am not able to successfully accomplish the password reset function. This 2950 does not respond to the mode button held down at power up or to sending a briak. I have tried both several times and the switch continues to fully boot. [URL]
C2950 Boot Loader (C2950-HBOOT-M) Version 12.1(11r)EA1, RELEASE SOFTWARE (fc1)Compiled Mon 22-Jul-02 17:18 by antoninoWS-C2950G-48-EI starting...Base ethernet MAC Address: 00:0b:fd:a1:4f:80Xmodem file system is available.Initializing
[Code].....
View 2 Replies
View Related
Feb 23, 2012
have a Switch I bought off a guy at work. Just to get into the Switching world of Cisco. He doesnt know the password on it and i cant reset the switch. I would like to mess around with it more but it doesnt load the flash or helper. It just sits there and holds. I have tried the password recovery and everything. Trust me, everything is correct, but it wont work for me. I cant load a new image to it because I dont have access to a server to get it from.
Base ethernet MAC Address: 00:0a:8a:94:58:c0Xmodem file system is available.
The system has been interrupted prior to initializing theflash filesystem. The following commands will initializethe flash filesystem, and finish loading the operatingsystem software:
flash_init load_helper boot
switch: flash_initInitializing Flash...flashfs[0]: 3 files, 1 directoriesflashfs[0]: 0 orphaned files, 0 orphaned directoriesflashfs[0]: Total bytes: 3612672flashfs[0]: Bytes used: 1815040flashfs[0]: Bytes available: 1797632flashfs[0]: flashfs fsck took 3 seconds....done Initializing Flash.Boot Sector Filesystem (bs:) installed, fsid: 3Parameter Block Filesystem (pb:) installed, fsid: 4û
View 2 Replies
View Related
Nov 5, 2012
Im trying to access the switch to reset the password to factory defaults (please see switch output Astrix has removed customer identifying information for security purposes.) Each time I reboot the switch and try and access the password recover mode this same output below starts and im still not able to access the recovery area of the switch
cisco WS-C3560G-48PS (PowerPC405) processor (revision F0) with 122880K/8184K bytes of memory.
Processor board ID FOC1133Y28Q
[Code].....
View 3 Replies
View Related
Nov 5, 2012
Im trying to access the switch to reset the password to factory defaults (please see switch output Astrix has removed customer identifying information for security purposes.) Each time I reboot the switch and try and access the password recover mode this same output below starts and im still not able to access the recovery area of the switch
cisco WS-C3560G-48PS (PowerPC405) processor (revision F0) with 122880K/8184K bytes of memory.
Processor board ID FOC1133Y28Q
Last reset from power-on
1 Virtual Ethernet interface
52 Gigabit Ethernet interfaces
The password-recovery mechanism is enabled.
[code]....
View 1 Replies
View Related
May 13, 2012
There is a requirement to configure tacacs and radius on catalyst 3750X (version 15.0) where two vrf exist.Is therer a solution to configure "tacacs-server,host x.x.x.x vrf yyy" ?? I know it is possible to configure under the "aaa group server radius xxx" the command "ip vrf forwarding yyy".Is there anything else for the tacacs-server and radius-server command?
View 2 Replies
View Related
Jul 10, 2012
I have been experimenting with acs 4.2 and a cisco asa 5510. I have managed to authenticate the ASA users with my tacacs server. The user "test" is authenticated with the tacacs server, and can log in. But the enable password is wrong, because i dont know where to place it in the tacacs server.
Now my question is, where do i set my enable password when authenticatig with tacacs+. And for this i mean in the acs 4.2, i know how to do it on the asa.
View 4 Replies
View Related
Jan 27, 2013
I try to updgrade a stack of two 3750X-48PS to the IOS 15.0-2
Same commande has the twelves others stack I have upgrade lately
archive download-sw /overwrite tftp://x.x.x.x/c3750e-universalk9-tar.150-2.SE.tar
or
archive download-sw /overwrite usbflash0:/3750/c3750e-universalk9-tar.150-2.SE.tar (much faster!)
At the end I have this message :
extracting c3750e-universalk9-mz.150-2.SE/info (511 bytes)
extracting c3750e-universalk9-mz.150-2.SE/c3750e-universalk9-mz.150-2.SE.bin (19842267 bytes)
[Code].....
View 3 Replies
View Related
Mar 25, 2013
I have upgraded my Catalyst 3750X-switches to software-version 15.0(2)SE2, but I cannot upgrade the 10G servicemodule to the same version. I use the archive download-sw command to load the c3kx-sm10g-tar.150-2.SE2.tar. The file is loaded to the switch, but when the process starts to transfer the file to the module it fails with the following messages:
Error 2: Unable to transfer image to FRU Modul on switch 1Error: Failed to update FRU Module image
The modules is now running with in-compatible versions as shown below:
Switch# H/W Status (CPU/FPGA) CPU Link Version
-----------------------------------------------------------------
1 OK 77C/71C ver-mismatch 03.00.41
2 OK 73C/73C ver-mismatch 03.00.41
View 1 Replies
View Related
Nov 20, 2011
if I read the Datasheet of Catalyst 3750X-Series-Switches it is possible to connect a new X-Switch to an existing and old Catalyst 3750-Series Stack.What kind of requirements are needed? Only same IOS-Version in the hole Stack and if possible same Feature-Set? .... like in a normal NOT mixed Stack?
View 4 Replies
View Related
Apr 9, 2013
Is it possible to mix 1 and 10 Gigabit links on a 1/10Giga Network Module of the Cat3750X? I mean porte GE1/1/1 and GE1/1/2 used with SFP and port TE1/1/2 used with SFP+; that makes TE1/1/1 not available as GE1/1/3 and 1/1/4
View 7 Replies
View Related
Jul 26, 2012
I am trying to migrate an ACS 4.1.1(24) using the migraton tool to ACS 5.2. The tool is working OK. It migrates the users, groups, NDG, etc. and the reports are showing no errors.
The problem is with the Enable password of the users. The users in the ACS 4 have the TACACS+ Enable Password configured, but after the migration it appears empty in the ACS 5.
View 3 Replies
View Related
Jan 31, 2012
I work at a hospital and we have 3750X-48P switches in stacks in various locations throughout the hospital. We have noticed that when an EKG machine is plugged into one of the ports on some of these switches and the EKG machines are set manually to 100/Full, the ports are no longer usable until the switch is restarted. The switch is configured for auto. If the EKG machine is set to auto, it will work and not cause problems. The link on the interface will show up/up and there will be output packets increasing. However, there will be no inputs on the link and the port is unusable. Unfortunately, even when the device is removed, the port becomes unusable for any device. Is there any way to fix this problem without rebooting the switch?
View 5 Replies
View Related
Apr 10, 2012
Assume I had Catalyst 3560X/3750X with 24 ports. The partnumber is WS-C3560X-24P-LI would like to how is the numbering defined if the switches have a C3KX-NM-10G installed with 4 SFP-GE-L.
View 1 Replies
View Related
Sep 5, 2012
our network is spread over 15 floors and each floor we have 5-6 switches. we are planning to purchase cat3750-x 24 ps poe with C3KX-NM-10G network modules. Each floor has two up links to the core switch with single mode fiber and other being the multimode.Suppose if we are purchasing 75 switches do we have to purchase 75 C3KX-NM-10 G modules.? or can we limit our purchase with 15 C3KX-NM-10G sothat two uplinks from each floor can be made? since network modules are optional cost factor is invovled. Or any issue with stacking ? the SFPs will be LR and LRM MODULES.looking for an answer ? whether the new usb type console cable comes bundled with cat350x or shall we have to order separately?
View 7 Replies
View Related
Nov 14, 2011
convergence time in case of stack master will be switched over to other switch.In my understating, when the stack master will be switched over to other switch based on election algorithm, convergence time will be less than 10 second.
I tried to calculate concersion time during fail over testing but convergence time was 21 second. I think it is too long...
Expected reasons
・I configured Rapid Spanning tree protocol between L3 and L3. (But RSTP's convergence time is 2~3 second..)
View 4 Replies
View Related
Sep 4, 2012
I just came across a requirement, of implementing different password policies for different group users.
I can see in >>>>SYSTEM CONFIGURATION>>>>User>>AUTHENTICATION SETTINGS has only global option to implement the password complexity/no of days for active user. But i need this feature to be based for per user/group
View 3 Replies
View Related
Jul 21, 2012
When quoting a Catalyst 3750X with PoE (WS-C3750X-48P-E) the Dynamic Configurator Tool allows to include as the secondary power supply option the Catalyst 3K-X 350W AC Secondary Power Supply (C3KX-PWR-350WAC/2), but the default included primary power supply is the Catalyst 3K-X 715W AC Power Supply (C3KX-PWR-715WAC). My questions are the following:
1. Will this combination of power supply work?
2. Will the C3KX-PWR-350WAC/2 be able to power up the switch if the primary power supply of 715W fails?
3. Will the PoE will be lost if the primary power supply fails and only the secondary power supply of 350W keeps working?
4. If this secondary power supply of 350W is not suitable for PoE, why it is available as a secondary power supply option in the Dynamic Configurator Tool for a PoE switch?
View 4 Replies
View Related
May 12, 2013
configuration of a Catalyst 3750X and Barracuda Web Filter using WCCP protocol.
We used various WCCP protocol settings, unable set to redirect traffic to the Web Filter.
This is the current configuration of 3750X:
ip routing
ip wccp 94 redirect-list 194 group-list 50
ip wccp 95 redirect-list 195 group-list 50
[Code]......
View 5 Replies
View Related
Apr 3, 2011
I'm trying to work out if I need to order the "IP services" image for a couple of C3750-X. I need to run OSPF on these switches, but find the IOS image requirements on Cisco contradict.
At the top of the data sheet it says: • Open Shortest Path First (OSPF) in IP Base image
On the product info page it says: IP Base: Enterprise Access Layer 3 Switching, including OSPF (Open Shortest Path First) for routed access
But in lots of other places it says you need 'IP services' for OSPF.
As the IP services IOS is quite a bit more expensive I would like to avoid buying it. What image do I need to run OSPF?
View 6 Replies
View Related
Feb 13, 2012
Need to clarify if ip sla icmp echo operation is supported in catalyst 3kx switches (ip services)? on the configuration guide, commands are available, but on the feature navigator, i can't find the feature, only ip sla video operation. i don't have a device to test on here.
View 2 Replies
View Related
Mar 17, 2013
I want to configure accesslists on my Catalyst 3750X-switches to protect different VLANs/networks. Any best-practices about inbound versus outbound accesslists? In my head it is more readable and easier to understand the config when accesslists are assigned outbound on the VLAN to protect instead of assigning them inbound on all possible source-VLANs. But of course, from a performance point-of-view it is better to use inbound access-lists to avoid un-necessary routing etc.
View 1 Replies
View Related
Aug 28, 2011
How do i go about removing forgotton username and password from the Catalyst switch 4510R after the switch has booted up
View 6 Replies
View Related
May 23, 2013
I'm trying to do password recovery on a Catalyst 3850 switch..I've read the section in this: url...where it says that I need to have physical access to the switch (I do), and that I reset the password if I issue a break command and interrupt the boot procedure. I've tried to do that... it gives me the "switch:" prompt, so I think I've interrupted the boot procedure successfully, but, what do I do next?I've successfully done recoveries on Catalyst 2950s, 3550s & 3560s, but the procedure for this one, if I'm reading the link above right, sounds like it's completely different.
View 10 Replies
View Related
Jan 24, 2013
How do I set a password? new Cisco 2911 router, C1900 Software (C1900-UNIVERSALK9-M), Version 15.1(4)M4 ?
View 6 Replies
View Related
Jul 4, 2012
I have Cisco ME3400 series switch .Unable to login as i have no user name and password. I want to set the swirch to factory default but not found any nub to press.
View 2 Replies
View Related
Apr 5, 2012
I'm been telnetting onto a 2955 and then upgraded the IOS and enabled ssh version 2 and then issues a "write", when I came back the exec-timeout had been issued and I was logged out of the router and now it is asking for a username and password and not just a password liek it did before enabling ssh. I havent yet put a username and password on yet, just the telnet.What would the username be if I havent set one?
View 12 Replies
View Related
Sep 17, 2012
I am trying to use the password recovery for an NME-16 and am having trouble. I am unable to look at my files in dir to so I can rename them. I can get the switch to bypass the config and come with the switch: prompt, but can not do anything more. I am trying the password recovery guide, but cant get to the text file to rename. I am using a 2811 router.
View 2 Replies
View Related
Feb 27, 2012
I have tried pressing the Reset button (within 5 secs) when the router power up. On my HyperTerminal, the image was loaded and the line interfaces were up. But when I press enter on HyperTerminal, there was no response.
View 1 Replies
View Related
Jan 24, 2012
I recently decomissioned an 871 from a small business site and the owner did not want the device anymore. So now I'm trying to use it back at the office in the sandbox, however I don't know the password to the device and neither does the business owner. There's a reset button on the back, but from what I've read (here), it only loads a different config file found on the internal flash. Tried this, no dice. Is this essentially a bricked router now or is there anything else I can do to clear the config and repurpose it for my use?
View 7 Replies
View Related
Apr 7, 2010
I trying to do password reset on a 506e that I got with the current password unknown. I've gone to the Cisco URL for the reset: [code]
I am using the correct bin file as I checked with my pix version. Also I CANNOT ping the firewall from a PCor system on the network, but CAN ping everthing from the PIX.I've tried using interface 1 but no go. Also I've checked the TFTP software (Solarwinds) is running fine and I've unblocked it in XP's firewall.
View 2 Replies
View Related
