What kind of deployment you are doing? Is it for wired users only? if you have wireless users and AP,you have to use Radius instead of TACACS+. TACACS+ doesnot support authentication for wireless users.
my requirement is, i wanted all the switches to authenticated via ACS, also i wanted to know what user has issued what command, currently i could able to view the users login & logout time with the time duration, apart from that in the ACS i couldn't see anything in "TACACS+ Administrator" & "Logged-in Users", what i could see the information is "TACACS+ Accounting","Passed Authentications" & "Failed Attempts"
aaa authentication login default group tacacs+ enable local
aaa authentication enable default group tacacs+ enable
aaa accounting exec default start-stop group tacacs+
tacacs-server host 10.203.1.92
tacacs-server key 123456
since i am new to this ACS, i don't much about the AAA commands.
Also which one is better to use, whether the TACACS or RADIUS?
Also wanted to know which one to use, whether the TACACS or RADIUS? as you said TACACS doesn't support wireless & RADIUS supports, is that the only difference when i am really configuring it for switches/routers? i hope RADIUS is using for dail-up client where as TACACS doesn't?
This is actually a pretty cool feature, i didn't even know it existed until I was looking for a solution to advertise a subnet (prefix in BGP talk), only if a certain condition existed. This is exactly what conditional advertisements does
j ai une question j ai achete un routeur cisco 887VA-k9 , je le configuré avec la configuration ci- dessous
si je le lier avec mon pc portable sur l un de ses ports directement ça marche toute est bien ( la connexion internet + m...
Attached policy provides CLI access to the Cisco 4G router over text messaging. Two files are in the attached .tar file:
2. PDF with instructions on how to load and use the .tcl file.