I'm trying to use ACS 3.0 to perform authorization onto exec level on multiple vendors network equipment. I'm able to use the ACS server to authorize a user onto a cisco switch and set the exec priv level if there is no RADIUS attributes defined for any other vendor. However, once I add in the attributes for authorization and priv level on our Enterasys switches I loose the ability to access the cisco switches but can access the enterasys ones.
I see the following errors on the debug on the cisco box.
Table of ContentsIntroductionVersion HistoryPossible Future
UpdatesDocuments PurposeNAT Operation in ASA 8.3+ SectionsRule Types
Network Object NATTwice NAT / Manual NATRule Types used per SectionNAT
Types used with Twice NAT / Manual NAT and Network Obje...
Table of Contents Introduction:This document describes details on how
NAT-T works. Background: ESP encrypts all critical information,
encapsulating the entire inner TCP/UDP datagram within an ESP header.
ESP is an IP protocol in the same sense that TCP an...