11-25-2008 02:10 PM - edited 03-10-2019 04:12 PM
I am trying to setup router authentication using Active Directory. My RADIUS server is communicating with my router, but I do not know how to define the Active Directory security group within my router. Could someone help me tell my router that the group I created in Active Directory, which is CISCO, can login to the router?
12-01-2008 11:57 AM
I am looking to do the same thing - right now anyone with an account in AD could log on to my router. How do I define a subset of users to have permission to telnet to my router?
12-05-2008 07:48 AM
if you set up a cisco ACS server, then you can point the routers/switches to it for TACACS, and the ACS can point to your AD. That means you can map AD groups in the ACS and define what access is allows, and even deny access if users are not members of a defined group. Don't think you can do this if you point directly to AD for AAA access.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: