Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

ACS 5.2 add overlapping IP Networks

Hi,

 

I am upgrading from ACS4.2 to 5.2. I rebuild the policy for TACACS for Switches Firewalls WLC...

 

In 4.2 is was possible to add AAA Clients with overlapping IP Ranges for example:

Network MGNT VLAN 10.20.20.* with KEY ******

But a specific host (Firewall) 10.20.20.20 with a different KEY

 

If I try the same in 5.2 it is not allowed. How can I get the same functionality with in 5.2. I need to do it for nearly 200 locations. Working with smaller Netmasks than /24 makes it very uncomfortable

 

Everyone's tags (1)
1 REPLY
Gold

Later versions of ACS include

Later versions of ACS include the ability to define AAA client for a specific IP address; even if there is a subnet of IP addresses defined that overlaps with the specific IP address definition. In such a case the definition for the specific IP will take priority. I know this capability is in ACS release 5.5 (would have to check whether was in fact introduced in an earlier release) but is not in ACS release 5.5

44
Views
0
Helpful
1
Replies
CreatePlease to create content