Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 

Tacacs authorization for Nexus5000 on ACS

I'm trying to configure authorization for a Nexus5020 and I cant find what I'm supposed to configure in ACS...

If I wanted to do Radius, it would be easy, simply provide as a Cisco-av pair " shell:roles=roleA ". The documentation does not say anything about configuring attribute for tacacs.


Any help would be appreciated.

3 REPLIES
New Member

Re: Tacacs authorization for Nexus5000 on ACS

Here is a link for the config on the Nexus:

http://www.cisco.com/en/US/docs/switches/datacenter/nexus5000/sw/configuration/guide/cli/sec_tacacsplus.html

If  this is what you are working with and you are using the GUI on the ACS, all you need to configure is:

allow the ip address of the Nexus to talk to the ACS

configure a pre-shared key on the ACS under TACACs

It is very similar to setting up radius.

Hope this is what your looking for.

Thanks,

Alex

New Member

Re: Tacacs authorization for Nexus5000 on ACS

Hello Dominic,

I am trying to set up my cisco switches to use Radius using my  ACS, however I am not finding any documentation do you still have the documentation for how to set up radius on ACS. If you have examples that would be helpful too, thanks!

Joanna

Re: Tacacs authorization for Nexus5000 on ACS

Hi,

The NAS type must be defined as Cisco IOS/PIX6.0 RADIUS.

After that, you need to define the Av-pair in the group or user level. Take a look at the jpeg I have attached.

924
Views
0
Helpful
3
Replies
CreatePlease to create content