Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
New Member

Secure-ACS: Special RADIUS-Attributes for Enterasys E7

Hi,

we were running a pretty old version of the  Cisco Secure ACS for AAA our network devices.

Unfortunately the  server crashed an we had to install and set it up with a new server.

Using  TACACS+ for our Cisco devices works fine.

We have a couple of  switches made by a vendor called Nexans, which only support RADIUS -  this works fine too.

Furthermore we still have some Enterasys E7  and with those RADIUS doesn't work at all.

Sniffering the packets,  everything looks good.

With the old server it worked well.

Does  anybody know if there are special configurations (e.g. attributes) when  configuring an ACS for Enterasys RADIUS-Clients?

Thanks,

Rolf

Everyone's tags (5)
1 ACCEPTED SOLUTION

Accepted Solutions

Re: Secure-ACS: Special RADIUS-Attributes for Enterasys E7


try this

attribute  [011]  Filter-ID to "Enterasys:version=1:mgmt=su:"

3 REPLIES

Re: Secure-ACS: Special RADIUS-Attributes for Enterasys E7


try this

attribute  [011]  Filter-ID to "Enterasys:version=1:mgmt=su:"

New Member

Re: Secure-ACS: Special RADIUS-Attributes for Enterasys E7

Great, it works!

You saved my day ;-)

New Member

Secure-ACS: Special RADIUS-Attributes for Enterasys E7

We have this configuration and works fine with our network and associate in a good manner also the policy which we have configured it on Enterasys in this way

Filter-Id===>

Enterasys:version=1:mgmt=su:policy=Administrator

.

.

.

.

After we make the update to ACS 5, the "ASA" consider this filter-id as access-list so it consider the field after the filter-id as the name of the acl, and diconnect the VPN connection.

Could soneone help me to resolve that.

1427
Views
0
Helpful
3
Replies
CreatePlease to create content