System information
Troubleshooting Security Implementations 24-477
XTACACS: Slow Response from Daemon
XTACACS: Slow Response from Daemon
Symptom: The response time from the XTACACS daemon is slow. Users have to wait a long time
before being prompted for their username and password.
Table 24-9 outlines the problems that might cause this symptom and describes solutions to those
problems.
Table 24-9 XTACACS: Slow Response from Daemon
XTACACS: Users Cannot Connect Using XTACACS
Symptom: Users cannot log in using XTACACS. Either users cannot get the “Username” prompt or
they get the prompt but authentication or authorization fails.
Table 24-10 outlines the problems that might cause this symptom and describes solutions to those
problems.
Table 24-10 XTACACS: Users Cannot Connect Using XTACACS
Possible Problem Solution
XTACACS has not been
launched
Launch the XTACACS daemon with the command xtacacsd -s -l.
XTACACS not specified in
/etc/services file
Step 1 Check the /etc/services file for the following line:
tacacs 49/udp
Step 2
This line must be included in the file. If the line is not present, add the line
to the file.
xtacacsd executable does not
exist
Check the directory where you installed xtacacsd for the xtacacsd file. If the
executable is not present, use the make command to compile xtacacsd.
Possible Problem Solution
DNS is misconfigured In order for XTACACS to function correctly, you must properly configure DNS.
Consult your DNS software documentation or your system administrator for
information on how to properly configure DNS.
DNS is not set up for reverse
lookups
If the DNS server is not configured to perform reverse lookups, XTACACS can
suffer excessive delays.
Consult your DNS software documentation or your system administrator for
information on how to properly configure the DNS for reverse lookups.