LMS 3.2 integration with ACS 5.1

Answered Question
Mar 19th, 2010
User Badges:

Hi


Is it /* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-qformat:yes; mso-style-parent:""; mso-padding-alt:0cm 5.4pt 0cm 5.4pt; mso-para-margin-top:0cm; mso-para-margin-right:0cm; mso-para-margin-bottom:10.0pt; mso-para-margin-left:0cm; line-height:115%; mso-pagination:widow-orphan; font-size:11.0pt; font-family:"Calibri","sans-serif"; mso-ascii-font-family:Calibri; mso-ascii-theme-font:minor-latin; mso-hansi-font-family:Calibri; mso-hansi-theme-font:minor-latin; mso-bidi-font-family:"Times New Roman"; mso-bidi-theme-font:minor-bidi; mso-fareast-language:EN-US;} possible to integrate LMS 3.2 with ACS 5.1? I know it works with ACS 4.X, but I can't get it to work with ACS 5.1.


Here is a link to how to do it with ACS 4.X:

http://www.cisco.com/en/US/prod/collateral/netmgtsw/ps6504/ps6528/ps2425/prod_white_paper0900aecd80613f62.html



Regards

Reidar

Correct Answer by Joe Clarke about 7 years 2 months ago

LMS cannot and will not be able to integrate with ACS 5.x.  The reason for this is that ACS 5.x removed the necessary integration hooks.  The plan for LMS going forward is to remove ACS integration support, and add support for customizing roles into LMS directly.  ACS will still be supported for authentication, though (this includes ACS 5.x).  ACS 5.x is supported for integration ONLY today in LMS 3.2.

Correct Answer by Martin Ermel about 7 years 4 months ago

according to this thread, it seems ACS 5.1 is ready for LMS integration but LMS is not readdy for ACS 5.1 integration ....


https://supportforums.cisco.com/message/675371#675371

  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 5 (2 ratings)
Loading.
reidargran Fri, 03/19/2010 - 04:57
User Badges:

Thank you. Then I'm going to use the ACS as an TACACS+ until LMS will support ACS 5.X

Martin Ermel Fri, 03/19/2010 - 05:14
User Badges:
  • Blue, 1500 points or more

there is still one think I am curious about... jclarke talked about summer 2010, this is the expeted release date for LMS 4.0 - so I am not sure if was thinking of LMS 3.2  or LMS 4.0 (or both) when he talked abut support for ACS 5.1....

waltereyetan Tue, 05/11/2010 - 06:10
User Badges:

Guys i seem to be having the same issue, has this been resolved? This is Mid-may.


Regards

reidargran Wed, 05/12/2010 - 01:52
User Badges:

/* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-qformat:yes; mso-style-parent:""; mso-padding-alt:0cm 5.4pt 0cm 5.4pt; mso-para-margin-top:0cm; mso-para-margin-right:0cm; mso-para-margin-bottom:10.0pt; mso-para-margin-left:0cm; line-height:115%; mso-pagination:widow-orphan; font-size:11.0pt; font-family:"Calibri","sans-serif"; mso-ascii-font-family:Calibri; mso-ascii-theme-font:minor-latin; mso-hansi-font-family:Calibri; mso-hansi-theme-font:minor-latin; mso-bidi-font-family:"Times New Roman"; mso-bidi-theme-font:minor-bidi;}

None that I'm aware of. It seems that there is a bug in ACS 5.1 as well. When I configure the LMS server to use TACACS+ the ACS server will give the user level 1 access, even if I have configured the ACS server to grant level 15 access. It could also be that I have configured the ACS server wrong :-)


/Reidar

waltereyetan Fri, 05/14/2010 - 16:44
User Badges:

/* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-qformat:yes; mso-style-parent:""; mso-padding-alt:0cm 5.4pt 0cm 5.4pt; mso-para-margin-top:0cm; mso-para-margin-right:0cm; mso-para-margin-bottom:10.0pt; mso-para-margin-left:0cm; line-height:115%; mso-pagination:widow-orphan; font-size:11.0pt; font-family:"Calibri","sans-serif"; mso-ascii-font-family:Calibri; mso-ascii-theme-font:minor-latin; mso-fareast-font-family:"Times New Roman"; mso-fareast-theme-font:minor-fareast; mso-hansi-font-family:Calibri; mso-hansi-theme-font:minor-latin; mso-bidi-font-family:"Times New Roman"; mso-bidi-theme-font:minor-bidi;}

Thanks Reidar.... hmm very strange. I really wish an expert would respond to this thread as it will help a lot of people who might be planning to deploy these versions and they can help put this matter to rest once and for all. Not sure why LMS 3.2 will not support ACS 5.1 and it might help to know when it will (updates etc). Kindly let me know if you get any further information. My deployment is so large that setting a local username and password on all the devices is not an option unfortunately .......

Correct Answer
Joe Clarke Fri, 05/14/2010 - 17:44
User Badges:
  • Cisco Employee,
  • Hall of Fame,

    Founding Member

LMS cannot and will not be able to integrate with ACS 5.x.  The reason for this is that ACS 5.x removed the necessary integration hooks.  The plan for LMS going forward is to remove ACS integration support, and add support for customizing roles into LMS directly.  ACS will still be supported for authentication, though (this includes ACS 5.x).  ACS 5.x is supported for integration ONLY today in LMS 3.2.

hleschin Mon, 05/17/2010 - 01:49
User Badges:

You wrote:


...

The plan for LMS going forward is to remove ACS integration support, and add support for customizing roles into LMS directly

...


That sound very, very good !!!  Will this function already be implemented in LMS 4.0 ?



Best Regards

Hendrik

Joe Clarke Mon, 05/17/2010 - 14:48
User Badges:
  • Cisco Employee,
  • Hall of Fame,

    Founding Member

Yes, LMS 4.0 will have locally customizable user roles.

waltereyetan Mon, 05/24/2010 - 07:59
User Badges:

Joe, i think i'm having issues even with the authentication. The error i'm getting is protocol mismatch have you seen this before?


Regards

Joe Clarke Mon, 05/24/2010 - 13:39
User Badges:
  • Cisco Employee,
  • Hall of Fame,

    Founding Member

Start a new thread for this problem.

Actions

This Discussion