Cisco ACS

Unanswered Question
Feb 5th, 2007

Hi,

with the following, the switch is working perfectly with what ever i configured in Cisco ACS....

aaa new-model

aaa authentication login default group tacacs+ enable local

aaa authentication enable default group tacacs+ enable

aaa authorization exec default group tacacs+ if-authenticated

aaa authorization commands 1 default group tacacs+ if-authenticated

aaa authorization commands 15 default group tacacs+ if-authenticated

aaa accounting exec default start-stop group tacacs+

tacacs-server host 10.203.1.92 key checkingtheswitch

could able to check the report,logged in users, login & logout time, failied authentication & pass authentications, but i couldn't see anything in "TACACS+ Administration" in Cisco ACS, can any one help me in this regard?

The above configuration was good enuf for me, that even if the Cisco ACS is down for any other reason, i could still able to login with the local database on the switch if i use "aaa authorization exec default group tacacs+ if-authenticated"

but still i feel something could be missing, so please suggest me any other commands needs to be added.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion