Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. If you'd prefer to explore, try our test area to get started. And see here for current known issues.

New Member

Cisco Secure ACS 2.6 Returns too many RADIUS attributes

Hi all,

I'm trying to authenticate my Firewall-1 VPN users to Cisco Secure ACS 2.6. FW-1 ignores packets that have unnecessary attributes returned. I've turned off all attributes in the Interface Configuration screen but a snoop shows that the ACS box is still sending several attributes.

1 REPLY
Bronze

Re: Cisco Secure ACS 2.6 Returns too many RADIUS attributes

It is hard to say what CSNT is sending back in the way of attributes without debug (http://www.cisco.com/warp/public/480/9.html) or a sniffer trace. I think RFC 2138 addresses what is sent. If the FW1 ignores packets that have unnecessary attributes, I don't know why there is a need to turn off attributes.

92
Views
0
Helpful
1
Replies