Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ACS 3.0 - Router authentication over WAN

The router has been to configured for AAA from ACS over 64 Kbps location. Router attempts to obtain authentication info from server but fails (ERROR) and jumps to next authentication option (local or none). Router ver:12.07T .

The ACS client IP address in ACS entered is ethernet IP of the router to be authenticated.

Any clue to overcome this ???

1 REPLY
Cisco Employee

Re: ACS 3.0 - Router authentication over WAN

If the ACS server is reachable over the wan interface of the router then you need to have ip address of WAN interface as the client IP address in ACS..Router will source the packets from the interface ip address over which its reachable..unless you modified it using "ip radius/tacacs source-interace...." If aaa receive the packets from ip address which is not defined in the client, it will not respond.

So try putting the ip address of the WAN interface as the client ip address in the ACS..

84
Views
0
Helpful
1
Replies
CreatePlease to create content