Dual ACS Connectivity

Unanswered Question
Jun 15th, 2009


i have 3 tire architecture lan.For AAA ACS would be used which will do the authentication/authorization and accounting.in my setup i have 2 ACS servers and my concern is the connectivity.do u i need to define the ip of both the servers in my router/switch or is there any way i can define virtual ip of for both servers so that even if single server fails other can take over.not found any document on this kindof connectivity.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
mahmoodmkl Mon, 06/15/2009 - 23:10


I think u need to define both the servers specifying one as primary and the other as secondry.



sameermunj Mon, 06/15/2009 - 23:18


u mean both servers will have same configuration and they will work individually.In router/switch we can define multiple tacacs host but dont think there is a way define primary & secondary.or is it like 1st entry will be primary and 2nd will be secondary so if primary is not available by some reason authentication will be done by secondary..pl coffirm.

mahmoodmkl Mon, 06/15/2009 - 23:32


Yes the config will be same on both the ACS servers.

Yeh u get it right that the first server will treated as primary and second will be as backup.

Yeh if the primary server is down then the authentication will be done by secondry server.



sameermunj Tue, 06/16/2009 - 00:23


Thanks for the help.

anyone else would like to confirm about the clustering pl revert as i am going to configure the same and install in network.once its installed wont be able to change the config.

if no clustering available then would go ahed with the option suggested by mohhamad.


This Discussion