I have ASA and I am using ACS server is a VM Ware applicance.
My question now is I would like to authenticate two different types of devices from a single Radius client.
Device 1 – Authenticating using Username and Password from Domain1 and Device Certificate from CA1
Device 2 – Authenticating using Username and Password from Domain 2 and User Certificate from CA2
Can a single Cisco ACS server be configured to do this? If not can 2 Cisco ACS servers be configured to do this bearing in mind it is a single Radius client which can only direct authentication traffic to a single Radius server?
I am using EAP method as a local certificate for that CA which is been istalled on the ACS and that cert which is locally needs to be assigned to the EAP Protocol.
Hence to proceed further I want to authenticate EAP against a second certificate authority. I can load a local certificate from this CA as well but the EAP protocol can only be assigned to one cert at a time so EAP authentication to this CA fails.
EG: I see the certificate cert1 under System Admin->Config -?Local certi -? Issueby cert1 protocol:EAP.
You can add as may Root CAs as you would like to the certificate profile under Users and Identity Stores -> Certifiacte Authorities. ACS does not need to be assigned multiple identity certificates to support different certificates from clients.
Login to the FXOS chassis manager.
Direct your browser to https://hostname/, and log-in using the user-name and password.
Go to Help > About and check the current version:
Check the current version availa...
We have configured the outside and inside Interface with official ipv6 adresses, set a default route on outside Interface to our router, we also have definied a rule , which also gets hits, to permit tcp from inside Interface to any6.
In Syslog I also se...