From: Popovich, Michael (MPopovich@xxxxxxxxxxxxxxx)
Date: Thu Oct 04 2001 - 10:23:33 GMT-3
I am using v2.6.
You must define all devices as NAS in order TACACS+ to authenticate,
authorize, or do any accounting.
One you have done that and setup the Cisco device to use TACACS+ along
with the key, everything should work.
Michael Popovich
-----Original Message-----
From: Dennis Bailey [mailto:amazingplace@prodigy.net]
Sent: Thursday, October 04, 2001 7:58 AM
To: ccielab@groupstudy.com
Subject: using Cisco Secure ACS to control terminal access to routers
I am wondering if anyone has been able to use CiscoSecure ACS (NT/2000
version) for controling
access to router console and vty lines. I am currently running ACS 2.5
and
am using it for authentication of dialup and vpn remote access users. I
have been trying to figure out how to use it to control access to my
routers
but seem to get to a point where authentication fails and the message in
the
failed attemps log is "unknown NAS"
Is it necessary to define every device in cisco secure for this to work?
Is
there a default NAS config. I
know I must be missing something simple, I can get it to work fine when
I
configure it for terminal access on one of my remote access routers
(which
are defined as NAS in cisco secure) but nothing else.
Any ideas, links, examples, abuse....whatever you feel is
appropriate..except
one day lab stuff :-)
Thanks,
Dennis
**Please read:http://www.groupstudy.com/list/posting.html
**Please read:http://www.groupstudy.com/list/posting.html
This archive was generated by hypermail 2.1.4 : Thu Jun 20 2002 - 22:33:13 GMT-3