12-16-2005 03:08 AM
Hi,
we are using in the company currently local user's created on each switch for telnet. I eared about TACAS, but I wonder how difficult it is to implemente, and can I use the Cisco ACS Server which we have already? Can we keep a local user, in case that central server is not working?
where can I find the way's to implement it?
Jorge
12-16-2005 06:58 AM
You can use antoher Tacacs+ server as a backup or local database for backup user.
Take a look at:
http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fsecur_c/fsaaa/
There are some usefull examples.
hth
12-16-2005 10:01 AM
Jorge
You can certainly configure your switch to use TACACS for authentication. You can provide various alternatives for the switch in case the TACACS server is not available. If you already have ACS server then implementation of TACACS on your switches should be quite easy. This link should give you enough information to get started.
http://www.cisco.com/univercd/cc/td/doc/product/lan/cat6000/sw_8_3/confg_gd/authent.htm
HTH
Rick
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: