LMS-FreeRadius integration

Answered Question
May 18th, 2009

Hi,

I know that it's possible to create different groups of devices in LMS through ACS, in such a way that a specific user cannot access to devices not assigned to him.

Is it possible to do it with a FreeRadius instead of a ACS?

Many thanks.

I have this problem too.
0 votes
Correct Answer by Joe Clarke about 7 years 6 months ago

However, this will not work with LMS. In order to restrict what devices an LMS user can manage, you need Cisco Secure ACS.

Correct Answer by Joe Clarke about 7 years 6 months ago

No. ACS and TACACS+ are required to do this. With only a Radius server, you will only be able to provide external centralized authentication. None of the custom roles or device grouping capabilities will be available.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (3 ratings)
Loading.
Correct Answer
Joe Clarke Mon, 05/18/2009 - 06:36

No. ACS and TACACS+ are required to do this. With only a Radius server, you will only be able to provide external centralized authentication. None of the custom roles or device grouping capabilities will be available.

Correct Answer
Joe Clarke Mon, 05/18/2009 - 07:11

However, this will not work with LMS. In order to restrict what devices an LMS user can manage, you need Cisco Secure ACS.

Actions

This Discussion