09-15-2006 04:43 AM - edited 03-03-2019 05:03 AM
Hi,
Can i configured on aironet 1100 RAIDIUS for users and TACACS for administration?
With Cisco ACS i can only add one option.
I want to centralize the AAA for all the equipments and use CISCO ACS!
But the AP's are radio clients already!
TKS
09-21-2006 06:23 AM
check out the following link on configuring RADIUS and TACACS+ on Aironet devices, hope this helps :
12-17-2006 02:45 PM
I managed to get this to work by creating a new user on the ACS that authenticated to the Cisco Secure Database. However, when attempting to process the login via ACE it did not like it one bit...
12-18-2006 03:55 PM
Yes, you can do both on the AP1100. Use something similar to the configuration below:
aaa new-model
!
!
aaa group server radius rad_eap
server x.x.x.x auth-port 1645 acct-port 1646
!
aaa group server tacacs+ tacacs_here
server x.x.x.x
!
aaa authentication login default group tacacs+ group tacacs_here
aaa authentication login wireless_client group rad_eap
!
dot11 ssid SSID4ME
vlan xxx
authentication open eap wireless_client
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: