ACS 4.2 vs ACS 5.1

Unanswered Question
Nov 16th, 2009
User Badges:

If you wanted to stand up a ACS solution in your environment, which is the better choice at this time? Is 4.2 going to be around, or is it going away for 5.x in the near future?

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Faisal Sehbai Mon, 11/16/2009 - 18:00
User Badges:
  • Gold, 750 points or more

4.x will be around for quite some time, but if you have the option, go to 5. Very flexible and powerful!


darpotter Tue, 11/17/2009 - 01:46
User Badges:
  • Silver, 250 points or more

I would urge caution.

Carefully assess what 4.x features you need and check they are available in 5.x.

Not only that, but check for outstanding bugs on those features.

If you depend on TACACS+ stick with 4.x. If you do large scale 802.1x or NAC consider 5.x

We speak to a lot of Cisco users and 5.x does not have feature parity and hasn't reached maturity w.r.t bugs etc.

jrabinow Tue, 11/17/2009 - 03:10
User Badges:
  • Cisco Employee,

ACS 5.1 has just been released that includes many of the missing 4.x parity features. This includes TACACS+ specific features such as custom attributes, change passwords and other features such as RSA, custom VSAs etc.

ACS 5.1 also includes a built in monitoring and trubleshooting module and the need for an additional license for these features has been dropped.

Alejandro Corte... Thu, 03/25/2010 - 16:55
User Badges:
  • Silver, 250 points or more

Hi, Why do you recommend to user v5.1 for 802.1x and NAC implementations?

I`m asking because we are planning to deploy NAC.

darpotter Thu, 04/01/2010 - 01:23
User Badges:
  • Silver, 250 points or more

The recommendation of 5.x for 802.1x/NAC is based on the fact that this is exactly what 5.x was created for, whereas in 4.x these features were "grafted" on.


This Discussion