cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1648
Views
10
Helpful
10
Replies

ACS 5.3 protocols support

fabioragazzo
Level 1
Level 1

hello,

my company asked me to verify which authentication protocols are supported by acs 5.3.

We have a network composed of all cisco devices, the oldest is a 2950 with IOS 12.1.

I know they were compatible.

ACS 5.3 up to what degree of backward compatibility of equipment arrives?

All cisco devices support TACACS +?

thanks

fabio

1 Accepted Solution

Accepted Solutions

Jatin Katyal
Cisco Employee
Cisco Employee

ACS can act as a radius or tacacs server for all those devices supports radius and tacacs protocol.

For more information like what kind of backend databases does it support please check the below listed link:

Supported and Interoperable Devices and Software for the Cisco Secure Access Control System 5.3

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.3/device_support/sdt53.html

ACS 5.3 as a AAA server

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.3/user/guide/rad_tac_phase.html#wp1013985

let me know if you need more info.

Regards,

Jatin

Do rate helpful posts-

~Jatin

View solution in original post

10 Replies 10

Jatin Katyal
Cisco Employee
Cisco Employee

ACS can act as a radius or tacacs server for all those devices supports radius and tacacs protocol.

For more information like what kind of backend databases does it support please check the below listed link:

Supported and Interoperable Devices and Software for the Cisco Secure Access Control System 5.3

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.3/device_support/sdt53.html

ACS 5.3 as a AAA server

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.3/user/guide/rad_tac_phase.html#wp1013985

let me know if you need more info.

Regards,

Jatin

Do rate helpful posts-

~Jatin

First, thanks to the availability!

I wanted to ask you one other thing.

The list of compatible devices (Table 1 Tested Network Elements) do not come to two devices that are present in my network:

- Cisco 2950

- Cisco 4500 series

This means that they are not compatible with ACS 5.3?

Thanks

fabio

Tested network elements/devices refers cisco has only performed testing with those devices. Please test tacacs authentication, it should work.

~Jatin

My problem is this to know if these devices support authentication tacacs through ACS  5.3 before you spend money unnecessarily to my company.

thanks

Again, ACS job is to support tacacs and radius protocol.

Also, I can see that 2950 and 4500 also supports tacacs configuration.

http://www.cisco.com/en/US/docs/switches/lan/catalyst2950/software/release/12.1_6_ea2c/configuration/guide/swgsyst.html#wp1018070

http://www.cisco.com/en/US/docs/switches/lan/catalyst4500/12.2/50sg/configuration/guide/supcfg.html#wp1138641

If you still need to test some feature then I would suggest to download the 90 days eval version of ACS 5 and build a test bed for testing purpose.

Regards,

Jatin

Do rate helpful posts-

~Jatin

Ok, thanks!

lighthouse so dump them and I will try the trial version before buying the full version.

One last question, I can put the trial version of vmware? There is a link to the installation guide of trial?

thanks

Yes, trial version can only be installaed on VMWARE.

Virtual Machine Requirements

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.3/installation/guide/csacs_vmware.html#wp1056074

For evaluation, ACS 5.3 can be installed in a  VMware ESX virtual machine. When evaluating ACS 5.3, you can configure  less disk space in the virtual machine, but a minimum disk space of 60  GB is required.

To download the ACS 5.3 software:

Step 1 Go to the following link:

http://cisco.com/go/acs

Step 2 Click Download Software.

You should have a valid Cisco.com login credentials to access this link.

To download a 90-day evaluation license:

Step 1 Go to the following link:

https://tools.cisco.com/SWIFT/Licensing/PrivateRegistrationServlet?DemoKeys=Y

Step 2 Click the link available in the Licenses Not Requiring a PAK section.

You should have a valid Cisco.com login credentials to access this link.

Evaluating VMware

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.3/installation/guide/csacs_vmware.html#wp1069919

Regards,

Jatin

Do rate helpful posts-

~Jatin

thanks so much!

bye and thanks again!

I would appreciate if you can mark this thread resolved so that other's can benefit from it.

Jatin

~Jatin

ok!

how do I?

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: