LMS-FreeRadius integration

Answered Question
May 18th, 2009
User Badges:

Hi,


I know that it's possible to create different groups of devices in LMS through ACS, in such a way that a specific user cannot access to devices not assigned to him.


Is it possible to do it with a FreeRadius instead of a ACS?


Many thanks.

Correct Answer by Joe Clarke about 8 years 1 month ago

However, this will not work with LMS. In order to restrict what devices an LMS user can manage, you need Cisco Secure ACS.

Correct Answer by Joe Clarke about 8 years 1 month ago

No. ACS and TACACS+ are required to do this. With only a Radius server, you will only be able to provide external centralized authentication. None of the custom roles or device grouping capabilities will be available.

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (3 ratings)
Loading.
Correct Answer
Joe Clarke Mon, 05/18/2009 - 06:36
User Badges:
  • Cisco Employee,
  • Hall of Fame,

    Founding Member

No. ACS and TACACS+ are required to do this. With only a Radius server, you will only be able to provide external centralized authentication. None of the custom roles or device grouping capabilities will be available.

Correct Answer
Joe Clarke Mon, 05/18/2009 - 07:11
User Badges:
  • Cisco Employee,
  • Hall of Fame,

    Founding Member

However, this will not work with LMS. In order to restrict what devices an LMS user can manage, you need Cisco Secure ACS.

Actions

This Discussion