I would like to ask some ideas on ACS configuration for device management using TACACS+.
Can I possibly add single AAA server to several Network Device Group? I tried to input AAA server to NDG A and the same AAA server to NDG B but it displayed overlapping. Does this means that each NDG should have its own AAA server?
Please advise. Thank you and looking forward for your reply.
You don't need to define a AAA server for each NDG. An NDG is just a logical grouping of AAA Clients, AAA Servers or a combination of both. In most cases they're just used to group together some AAA Clients for use elsewhere in the ACS configuration, other than that there's no need to define a server for each group as this has nothing to do with the groups ability to be used elsewhere.
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...