Configuration steps for TACACS+

hyderabadnoc · ‎06-22-2008

Hi we are planing to install the Cisco ACS 4.2 with TACACS+ can any one send the configuation steps for ACS and Configuration steps that i have to do at Router & Switches

Marwan ALshawi · ‎06-22-2008

it is easy

first install it on windows box then make a client on network section on the right, u have to make a client for evry device that u gonna use it for aaa, easy too, the device IP and shared secret ( and u have to choose the protocol u want such as TACACS+..so on)

then make a server group on ur router which represent the ACS server (IP and the same shared secret)

then you can use this server group on you aaa configurations

for detailed config and every thing related to your question use the link bellow

http://www.cisco.com/en/US/tech/tk583/tk642/tsd_technology_support_sub-protocol_home.html

please rate if useful

thank you

Jagdeep Gambhir · ‎06-23-2008

Here are the commands,

Employ Authentication, Authorization, and Command Authorization on an IOS or set based

device:

IOS -

Router(config)# username [username] password [password]

tacacs-server host [ip]

tacacs-server key [key]

aaa new-model

aaa authentication login default group tacacs+ local

aaa authorization exec default group tacacs+ if-authenticated

aaa authorization commands 1 default group tacacs+ if-authenticated

aaa authorization commands 15 default group tacacs+ if-authenticated

aaa authorization config-commands

Note : Use "authorization command"only if you plan to setup command authorization.

http://cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/configuration/guide/noagent.html#wpxref82776

Regards,

~JG