Common Troubleshooting Tools In Fabric Manager; Common Troubleshooting Commands In The Cli; Aaa Issues; Switch Does Not Communicate With Aaa Server - Cisco 9134 - MDS Multilayer Fabric Switch Troubleshooting Manual

AAA Issues

S e n d d o c u m e n t a t i o n c o m m e n t s t o m d s f e e d b a c k - d o c @ c i s c o . c o m

Common Troubleshooting Tools in Fabric Manager

Use the following Fabric Manager procedures to troubleshoot AAA issues:
•
•
•

Common Troubleshooting Commands in the CLI

Use the following CLI commands to troubleshoot AAA issues:
•
•
•
•
•
•
Use the following debug commands to determine the root cause of an issue:
•
•
•
•
AAA Issues
This section describes common AAA issues and includes the following topics:
•
•
•
•

Switch Does Not Communicate with AAA Server

Multiple misconfigurations can result in an AAA server that the Cisco SAN-OS switch does not
communicate with.
Cisco MDS 9000 Family Troubleshooting Guide, Release 3.x
17-2
Choose Switches > Security > AAA > RADIUS to view the RADIUS configuration.
Choose Switches > Security > AAA > TACACS+ to view the TACACS+ configuration.
Choose Switches > Security > AAA to view server group and AAA monitor deadtime values.
show aaa authentication
show user-account
show radius status
show radius-server
show tacacs+ status
show tacacs-server
debug radius aaa-request
debug radius aaa-request-lowlevel
debug tacacs+ aaa-request and
debug tacacs+ aaa-request-lowlevel
Switch Does Not Communicate with AAA Server, page 17-2
User Authentication Fails, page 17-8
User Is Not in Any Configured Role, page 17-10
User Cannot Access Certain Features, page 17-11
Chapter 17 Troubleshooting RADIUS and TACACS+
OL-9285-05