Dear All,

I have few questions of ACS4.2.

I have got 2 Liecences for Two ACS 4.2 servers and i have done the installation on two servers. my questions here

is during the installation it has never asked for liecansing key. so then whats the use of liecensaning key

2 Question:

My design requires one is the primay ACS and other will be the seconday ACS .

if primay fails with out any delay it should contact secondary server, and if both the servers are not reachable

it should ask for local passwords with out any dealy.

Finally end user should not be affected with failure of ACS.

3 Question: is the config diffres for diffrent models of routers and switches

please find my proposed config

----------------------------------------

aaa new-model

aaa authentication login default group tacacs+ line

aaa authentication login no_tacacs line

aaa authorization exec default group tacacs+ if-authenticated

aaa authorization commands 1 default group tacacs+ if-authenticated

aaa authorization commands 15 default group tacacs+ if-authenticated

aaa accounting exec default start-stop group tacacs+

aaa accounting commands 1 default start-stop group tacacs+

aaa accounting commands 15 default start-stop group tacacs+

aaa accounting network default start-stop group tacacs+

aaa accounting connection default start-stop group tacacs+

aaa accounting system default start-stop group tacacs+

aaa session-id common

---------------------------------

tacacs-server host X.X.X.X(primary)

tacacs-server host Y.Y.Y.Y(SECONDARY)

tacacs-server timeout 5

tacacs-server directed-request

tacacs-server key 7 XXXXXXXXXXXX

--------------------------------

line con 0

password 7 001014030D511C08260F68700001

login authentication no_tacacs

line vty 0 4

password 7 03105C0E0F05364267273D12345

line vty 5 15

password 7 03105C0E0F05364267212345