Disable ACS/TACACS account after 14 days of inactivity

Unanswered Question
Oct 17th, 2007

Is it possible to configure a group or user in Cisco ACS local database to disable accounts after a certain amount of inactivity on that account?

For example if you have someone that has not logged in and been authenticated in 15 days, to have that account disabled?

Accounts that point to Active Directory as an external database is no problem, but we have outside people that are configured in ACS local database and they have access to network resources. We would like to disable their accounts after a certain amount of time.

Is that possible within ACS?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Jagdeep Gambhir Wed, 10/17/2007 - 07:34


Unfortunately that is not possible in acs but it is a good feature to have.

As of now all you can set is "Disable account if" Date exceeds: xx.xx.xxxx

Please post all ACS related issues in AAA forum.



Please rate helpful posts


This Discussion