Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

Can TACACS+ & RADIUS (Aironet) work on same ACS server

I hv ACS wch is running TACACS+. Now I want wireless devices (ATM-Automated Teller Machines) connected to Cisco Aironet 350 Access Point to get authenticated via same ACS with Cisco Aironet Radius Protocol. Is it possible to do ??

If not then can I go ahead instaling same ACS with Radius Aironet protocol on different PC without any licensing issue.

There is some Radius attribute which I need to set 027 Session Time out which is not present in TACACS+. Any work around you can suggest.

New Member

Re: Can TACACS+ & RADIUS (Aironet) work on same ACS server

You can define x AAA clients using different authentication methods on the same ACS.

Just add a new client in the network configuration and select the desired authentication method.

New Member

Re: Can TACACS+ & RADIUS (Aironet) work on same ACS server

while installation of ACS 3.0 it prompted for selection of only one of the available protocols. I selected TACACS+ So right now my ACS is doing TACACS+ authentication for my users of the routers.

Now we have to authenticate wireless ATM through cisco access point 350 Though I can add cisco access point as aaa client how do I have the setting for session timeout (600 seconds) done. This is a IETF Radius attribute which is used for generating dynanic WEP (Wired Equivalent Privacy) key. But my ACS server does not allow me such setting for session timeout attribute thru group setup-->Edit group settings--> IETF Attribute -- 027 session time out. Please guide.

New Member

Re: Can TACACS+ & RADIUS (Aironet) work on same ACS server

I'm a little bit confused about your problem:

When adding a new aaa client you can define the authencation method, in your case RADIUS (Cisco Aironet) or RADIUS (IETF).

In the interface configuration you will find a new entry displaying RADIUS (IETF), where you can select attribute 027 to be available in the group settings.

New Member

Re: Can TACACS+ & RADIUS (Aironet) work on same ACS server

Do you have a procedure to configure the TACACS + with the AAA on ACS 3.0


McNaz Yeo

CreatePlease login to create content