06-06-2008 04:17 AM - edited 03-10-2019 03:53 PM
I have 3 user groups with diff access levels and only one NDG.If I create a separate device group I get an error stating that i cannot use the same AAA server address mentioned in the first group.Can 2 network groups can be created for same AAA?
06-06-2008 05:24 AM
There is no need to create separate server for each NDgroup. It does not matter which NDG, server belongs to, that server will take care of all clients and NDG.
Regards,
~JG
Do rate helpful posts
06-08-2008 11:18 PM
Thanks.
But Im facing another problem now. I had a replication partner for this AAA server in which I created 2 NDGs.I had taken the server offline while making the changes. the users were getting authenticated by the partner. Should I shutdown the partner while bringing my primary online? bcoz now if the primary is on , no authn is taking place.repln is manual n i have not replicated the changes.
06-09-2008 04:56 AM
You can bring up primary, the aaa request should still go to seconday acs (at least for sometime).
By that time you can make the changes on primary .
Regards,
~JG
Do rate helpful posts
06-10-2008 04:10 AM
Thanks. I will try that and will let you know. Meanwhile I have an AAA client file to be imported to a diff server. Is there any method so that I can give null value for the "key" part? there are more than 800 clients and the csutil expects the key parameter to be present.
Rgds
06-10-2008 04:34 AM
Yes, you can use RDBMS sync feature,
Do rate helpful posts
Regards,
~JG
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide