Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
172
Views
0
Helpful
1
Replies

ACS 4.2 - Need Help

Anukalp S
Level 1
Level 1

‎06-02-2014 12:40 AM - edited ‎03-10-2019 09:45 PM

 

 Hi,

 I have been stucked on a issue. I have two ACS 4.2 servers running on different locations. Both ACS server cak talk to each other.

A network administrator before me configured and set up ACS(TACACS). I  am not able to find out that in which way he had set up it.

The problem i am facing here that if one ACS server gets unreachable or goes down, i dont be able to login through TACACS while another ACS server is up  & running.

 I have configured both ACS server host on cisco network devices.

But now i want to completely decommision this server which was unreachable so that issue doenst face again.

Pls tell me how could i do this successfully.

Labels:
0 Helpful
1 Reply 1

anubhavgupts
Level 1
Level 1

‎06-04-2014 02:21 AM

Hi Anukalp,

 

Decommissioning the ACS is not the problem, if you have a backup tacacs server configured on all the devices then you can go ahead and shut down the concern ACS, all the network devices will automatically fall back to secondary ACS server.

Then gradually you can remove the IP address of the decommissioned ACS from all the network devices.

Note: If you think that your secondary ACS is not configured properly like the other one then you can replicate the configuration by using the below given link:

 

http://www.cisco.com/c/en/us/support/docs/security/pix-500-series-security-appliances/71320-acs-db-replication.html

 

Thanks & Regards,

Anubhav

0 Helpful
Customers Also Viewed These Support Documents