ACS 5.1 AD authentication with tacacs+

Unanswered Question
Mar 15th, 2010

Can anyone point me to a document or explain how I can use the external databse rather than the internal database to be able to log on to a device using tacacs+? The ACS 5.1 is already integrated with AD and I have tacacs+ working with the internal database, thanks.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.
sslewis22 Tue, 03/16/2010 - 05:52

Set the Identity source of your network administration policy to Active directory rather than Internal. (Probably called 'AD1'). If you want to use _both_ then create an Identity Store Sequence first, that checks internal followed by AD, and use that Identity Store Sequence as the Identity source for your policy.

mario-white Tue, 03/16/2010 - 06:54

Thanks I had already done that turns out what I needed to do was to customize the conditions and add External groups.

Actions

This Discussion