Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

access-server &Acs


I have an access-server with 16-NM analoe modem..I Recently install The Acs3.2 on the win 2003 Server.I Have Created 15 user name to initiate a PPP how can i configure the Acs & access-server to Anthenticate the users?the users in the database of the Acs shoud be the same like on the access-server?ps list some config to me.



Re: access-server &Acs


have a look at the sample configuration below, it contains the basic commands you need to have your dialup clients authenticated by ACS (TACACS):

Basic TACACS+ Configuration Example

Let me know if you run into trouble...



New Member

Re: access-server &Acs

Hi Friend!

this page need a Unlimited CCO Acount!PS Another

Re: access-server &Acs

Ok, here is how it is going to work:

1. On the Cisco access-server you must have configured Tacacs authentication for the incoming PPP calls.

You do not need to enter any users inside the Cisco access-server. When an incoming call passes into the Cisco access-server it will collect from customer his username and password and will send an authentication request to the Tacacs server. In the Tacacs ACS server you will configure usernames and passwords.

Here is an example configuration for the Cisco access-server:

interface Group-Async1

ip unnumbered FastEthernet0/

no ip directed-broadcast

encapsulation ppp

keepalive 10

async default routing

async dynamic address

async dynamic routing

async mode dedicated

peer default ip address pool POOL

no cdp enable

ppp authentication chap (pap - chap, whatever you like)

group-range 10 20 (line numbers)

line 10 20

session-timeout 5

autoselect during-login

autoselect ppp

modem In

transport input telnet

escape-character NONE

flowcontrol hardware

aaa new-model

aaa authentication login default line tacacs+

aaa authentication ppp default tacacs+

aaa authentication ppp ppp_list tacacs+

aaa authorization network default tacacs+

aaa accounting network default start-stop tacacs+

tacacs-server host XXX.XXX.XXX.XXX

tacacs-server key **********

That is all at the Cisco side.

P.S. Greetings from :)

CreatePlease login to create content