Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
377
Views
0
Helpful
3
Replies

TACACS+ freeware av-pairs (Called/CAlling Station ID check)

sthon
Level 1
Level 1

‎07-02-2002 03:52 AM - edited ‎02-21-2020 11:51 AM

Hi guys,

I found no infos about DNIS/CLID check via av-pairs on A TACACS+ freeware Server (not for Cisco Secure ACS).

The format looks like:

user = cisco800 {

chap = cleartext "12345"

service = ppp protocol = ip {

addr = 1.1.1.1

}

service = ppp protocol = multilink {

max-links = 2

}

}

The only av-pairs I found are at: http://www.cisco.com/univercd/cc/td/doc/product/software/ios122/122cgcr/fsecur_c/fappendx/scftacat.htm

I am interested in any other av-pairs you can offer.

regards

sascha

Labels:
0 Helpful
3 Replies 3

sthon
Level 1
Level 1

‎07-08-2002 11:36 PM

Hi Yusuf,

I did not search infos about "Configuring AAA Server Group Selection Based on DNIS".

I want to do a "simple" DNIS or CLID check.

example:

"user1" only get succesfull authentication if it´s calling 11111

"user2" only get succesfull authentication if it´s calling 22222

I am searching the syntax to configure this on freeware TACACS.

regards

sascha

0 Helpful

yusuff
Cisco Employee
Cisco Employee
In response to sthon

‎07-18-2002 03:12 PM

I am not sure if this is possible with freeware tacacs, but it is possible with CiscoSecure ACS (TACACS/RADIUS), but i don't know the details. I would suggest you open a TAC case to get a definitive answer on this.

R/Yusuf

0 Helpful
Customers Also Viewed These Support Documents