System information

Troubleshooting Security Implementations 24-475
XTACACS: Errors Decompressing File
XTACACS: Errors Decompressing File
Symptom: Error messages are generated when unarchiving the XTACACS archive file (either
xtacacsd.tar.z or xtacacsd.tar).
Table 24-6 outlines the problems that might cause this symptom and describes solutions to those
problems.
Table 24-6 XTACACS: Errors Decompressing File
CHAP
4
is misconfigured Step 1 Use the show running-config privileged exec command to make sure your
configuration includes the following global configuration command:
aaa authentication ppp default if-needed tacacs+
Step 2
If the command is not present, add it to the configuration.
Step 3 In addition, check the configuration of the async interface being used. Use
the show running-config privileged exec command. The interface must
have the following commands configured:
encapsulation ppp
ppp authentication chap
Step 4
If these commands are not present, add them to the interface configuration.
Step 5 Make sure your daemon configuration file, located in the tac_plus.2.1
directory, includes one of the following lines, as appropriate:
chap = cleartext
password
or
global = cleartext
password
Username and password not in
/etc/passwd
Step 1 Check to make sure that the appropriate username and password pairs are
contained in the /etc/passwd file.
Step 2 If the appropriate users are not specified, generate a new user with the
correct username and password using the add user command.
No TCP
5
connection to
TACACS+ daemon
Step 1 From the router, try to Telnet to port 49 on the TACACS+ daemon.
Step 2 If the Telnet is unsuccessful, make sure the daemon is running. For more
information, refer to the section “TACACS+: Daemon Not Up and
Running” earlier in this chapter.
Step 3 If the daemon is running but the Telnet times out, check IP connectivity.
For more information, see Chapter 7, “Troubleshooting TCP/IP.
1 DNS = Domain Name System
2 PPP = Point-to-Point Protocol
3 PAP = Password Authentication Protocol
4 CHAP = Challenge Handshake Authentication Protocol
5 TCP = Transmission Control Protocol
Possible Problem Solution
File was not transferred using
FTP binary (image) mode
The XTACACS archive file must be transferred using FTP binary (image) mode.
Step 1 FTP the xtacacsd.tar.z or the xtacacsd.tar file again using binary transfer
mode.
Step 2 From the FTP command line, enter the image command to set the image
mode.
For other FTP software, refer to your documentation for instructions on setting the
image mode.
Possible Problem Solution