Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ACS 5.1 AD authentication with tacacs+

Can anyone point me to a document or explain how I can use the external databse rather than the internal database to be able to log on to a device using tacacs+? The ACS 5.1 is already integrated with AD and I have tacacs+ working with the internal database, thanks.

2 REPLIES
New Member

Re: ACS 5.1 AD authentication with tacacs+

Set the Identity source of your network administration policy to Active directory rather than Internal. (Probably called 'AD1'). If you want to use _both_ then create an Identity Store Sequence first, that checks internal followed by AD, and use that Identity Store Sequence as the Identity source for your policy.

New Member

Re: ACS 5.1 AD authentication with tacacs+

Thanks I had already done that turns out what I needed to do was to customize the conditions and add External groups.

521
Views
0
Helpful
2
Replies