VoIP ACS Group

Unanswered Question
May 6th, 2009
User Badges:

I'm doing some testing with a VoIP phone that is vpn connecting to a ASA that referencs a local ACS username. I've enabled the Voice-over-IP (VoIP) group and put this user into that group. I'm not able to find any docs on the Cisco website (or online) that describe this functionality, or explain what the restrictions are when using this specific ACS group. Can you explain how this works, the security implications and where I might find docs other than the ACS user guides which has one small section describing this? It's ACS version V4.2.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
darpotter Wed, 05/06/2009 - 23:38
User Badges:
  • Silver, 250 points or more

As I recall by putting a user into a voip group did something odd to the authentication. I think the password had to be empty, ie supplied but empty.


I think that was pretty much all there was to it.


Bear in mind this was so long ago that it pre-dated EAP - I think it probably worked with PAP only. I doubt it would even work with later versions of ACS as there's noone left at Cisco who knew anything about it.

Actions

This Discussion