Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ACS 4.2 and RADIUS to an external site

I've got a pair of Cisco ACS 4.2 servers running on our corporate LAN. Currently they are doing TACACS+ for the network gear, and wireless authentications for internal users.

We have contracted with an external web site for an application - They can run RADIUS from their site to our LAN for the user authentications. How can I best do this?

1. NAT the traffic on my ASA firewalls to the internal servers, send the RADIUS traffic to/from the external site?

2. Is this secure?

3. Should I have a RADIUS server in the DMZ instead?

4. Any issues with doing this on ACS 4.2?

Thanks for any help you can offer.

Everyone's tags (2)
CreatePlease to create content