12-12-2008 09:21 AM
Our firewalls are all set up with TACACS+ which uses Cisco ACS for ssh authentication.
I need to configure one of our firewalls for VPN using Radius, however since the firewall is already configured as a TACACS+ device on ACS I can't add it again as a Radius device, and if I change it to a Radius device then SSH stops working. Is there anyway to use the same ACS server for VPN using Radius and ssh authenitcation using TACACS+ for a single device?
Solved! Go to Solution.
12-12-2008 11:12 AM
Its easier than you think, you just need a seperate authentication profile for each protocol. You'll just need to have a different name for each profile (I personally just tack a -r or a -t on the end of the hostname)
12-12-2008 11:12 AM
Its easier than you think, you just need a seperate authentication profile for each protocol. You'll just need to have a different name for each profile (I personally just tack a -r or a -t on the end of the hostname)
12-12-2008 11:33 AM
Ha...yea that's pretty funny that I didn't even try that...easy enough, I like solutions like this.
Thanks!
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide