Buy or Renew
Buy or Renew
Cisco + Splunk: It’s a new day for your data. Learn more.
 
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
520
Views
0
Helpful
1
Replies

Cisco Prime Authorization

moody
Level 1
Level 1

‎06-13-2014 01:58 PM

I have an ACS 4.2 server running - and it points to a remote ldap database.

 

aaa for our devices points to this tacacs server.  i tried to setup prime infrastructure to do the same, but i keep getting the authentication working, but then an error msg for the authorization prevents me from going further. 

 

i realize i can locally setup a user on PI - and give them admin status etc, but i'd really like to simply have PI point to our ACS and authenticate and authorize each user.  i don't want to have to set (or reset) a p/w for our admins to use Prime. 

 

is this possible?

 

Thanks.
 

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎06-13-2014 04:28 PM

Cisco has phased out use of an external server for authorization within the application. This used to be available with LMS 3.x but no longer is offered.

Currently all of the role-based authorization control (RBAC) for PI users has to be done locally on the server and cannot be derived from the roles defined in your ACS server. 

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents