ACS 4.1 multi method authentication

Unanswered Question
Feb 11th, 2009

Hi folks,

if we have a current acs configured to authenticate users via RSA securid can the same user auths be done to a device that only supports Radius?

The Radius only works if I set the user auth to ACS internal database.

Cheers

Tony

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
Ivan Martinon Wed, 02/11/2009 - 09:57

Hey Tony,

Since your device only support radius, you can use a Network Access Profile to match some set of conditions and apply some set of rules, for example, you can use the NAS-IP-Address attribute to match the ip address of this host from the Access-Request packet and tell that if this device comes to authenticate then authenticate to the local ACS DB, all other queries should be parsed normally. Take a look at the configuraiton guide of ACS particularly on the NAP section:

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.1/user/NAPs.html

Actions

This Discussion