Active Directory Security Group With Cisco Router

Unanswered Question
Nov 25th, 2008

I am trying to setup router authentication using Active Directory. My RADIUS server is communicating with my router, but I do not know how to define the Active Directory security group within my router. Could someone help me tell my router that the group I created in Active Directory, which is CISCO, can login to the router?

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
jasonww04 Mon, 12/01/2008 - 11:57

I am looking to do the same thing - right now anyone with an account in AD could log on to my router. How do I define a subset of users to have permission to telnet to my router?

if you set up a cisco ACS server, then you can point the routers/switches to it for TACACS, and the ACS can point to your AD. That means you can map AD groups in the ACS and define what access is allows, and even deny access if users are not members of a defined group. Don't think you can do this if you point directly to AD for AAA access.


This Discussion