Two ACS 3.3 Appliances

remco.gussen · ‎10-31-2007

Hi there

I was wondering what you can do with ACS replication between primary and secondary ACS. I want to install two ACS's together with PEAP in a wireless environment. I read on the site that external user database replication is not posible. I want to check the Active Directory for user authentication.

Do i need to configure the two ACS's seperately ?

Gr.

Remco

somishra · ‎10-31-2007

Hi Remco,

In ACS 3.3 the following items cannot be replicated:

-IP pool definitions

-Cisco Secure ACS certificate and private key files.

-All external user database configurations, including NAC databases.

-Unknown user group mapping configuration.

-User-defined RADIUS dictionaries

-Settings on the ACS Service Management page in the System Configuration section.

-All logging configurations.

-RDBMS Synchronization settings.

Check the following doc about more details on ACS replication:

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_solution_engine/3.3/user/guide/sad.html#wp615694

Rgds,

somishra

remco.gussen · ‎11-01-2007

Thank you for the reply..

Is it posible with the ACS 3.3 appliance and the ACS Windows client, to support authentication in different domains ? Do you have to install the Windows client in the root domain and is authentication / external group mapping possible to the child domain ?

Gr.

Remco