I am designing a new Cisco ACS rollout. I have 8 servers to work with. I wanted to know if there is any kind of limitation regarding the size of a cluster of servers. Is there any official recommendation? The servers can be geographically dispersed? What should be the WAN delay in order to have the cluster working fine? I have been looking for a good design guide for Cisco ACS 5.2 and couldn't find nothing in the Cisco site. (Apart from the User guide, Installation and upgrade guide, and deployment guide). The Security SRNDs don't have much about ACS.
Please reach out to your account team in order to get the most efficient response to your questions, the deployment of 8 ACS servers is too vague, it depends on the WAN design, how many endpoints, if this is for tacacs, radius, or both, also the type of authentication protocols you will be using (eap-fast, eap-tls, peap...etc).
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...