https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369790#M124466 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>What are you implementing two factor authentication on?&nbsp; Is this for device management, I don;t believe TACACS supports this.</P><P></P><P>Thanks</P><P>Chris</P></BODY></HTML> Thu, 28 Nov 2013 16:19:55 GMT Chris Illsley 2013-11-28T16:19:55Z https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369789#M124465 <P>Dear All,</P><P></P><P>We are presenting ACS POC in one of our client.</P><P></P><P>we did authentication using TACACS+ in the AD user with different previllages and working fine.</P><P></P><P>And also we implemented RSA secure ID authentication, and its is working fine.</P><P></P><P>our customer need two-factor authentication using RSA secureID password and AD username password (using TACACS+).</P><P></P><P>can any one help me how to implement this scenario?</P><P></P><P>it is very urgent, please help me how to implement two factor authentication using RSA secure ID and username and password.</P><P></P><P>Thanks,</P><P>P.Ramkumar. </P> Mon, 11 Mar 2019 04:08:19 GMT https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369789#M124465 ramkumar 2019-03-11T04:08:19Z https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369790#M124466 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>What are you implementing two factor authentication on?&nbsp; Is this for device management, I don;t believe TACACS supports this.</P><P></P><P>Thanks</P><P>Chris</P></BODY></HTML> Thu, 28 Nov 2013 16:19:55 GMT https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369790#M124466 Chris Illsley 2013-11-28T16:19:55Z https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369791#M124467 <HTML><HEAD></HEAD><BODY><P>Hi Chris,</P><P></P><P>We are try to implement two factor authentication using RSA secure ID and TACACS+(user name and password mapped with AD).</P><P></P><P><STRONG>Requirement</STRONG> :</P><P></P><P>when user try to login switch need <STRONG>user name and password</STRONG> (which is in their AD) <STRONG>and RSA secure ID</STRONG> for that user(in RSA they mapped that AD user ).if both the cretential are correct then only user get permission to login the switch.</P><P></P><P>If they dont support means any other way to implement this requirement?</P><P></P><P>can you (any one) please tell me or share me&nbsp; the step by step procedure for implement two-factor authentication(using RSA and any) in ACS 5.4.</P><P></P><P>Because i dont have a idea to implement two-factor authentication.</P><P>Any one help me how to implement two factor authentication in ACS 5.4.</P><P></P><P>and also is their any way to see the user in mapped AD group in ACS 5.x?</P><P></P><P></P><P>Thanks,</P><P>P.Ramkumar.</P></BODY></HTML> Fri, 29 Nov 2013 04:07:56 GMT https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369791#M124467 ramkumar 2013-11-29T04:07:56Z https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369792#M124468 <HTML><HEAD></HEAD><BODY><P>Hi Again,</P><P></P><P>You should be able to find the information you need here:</P><P></P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.3/user/guide/users_id_stores.html#wp1123587">http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.3/user/guide/users_id_stores.html#wp1123587</A></P><P></P><P>Helpfully under the heading:</P><P></P><H3><STRONG>Identity Stores with Two-Factor Authentication</STRONG></H3><P></P><P>Cheers</P><P>Chris</P></BODY></HTML> Fri, 29 Nov 2013 08:32:06 GMT https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369792#M124468 Chris Illsley 2013-11-29T08:32:06Z https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369793#M124469 <HTML><HEAD></HEAD><BODY><P>Dear chris,</P><P></P><P>Is it possible to restrict user access (read-only and super user) in switch using two factor authentication.?</P><P></P><P>our customer need switch login with username and password and the enable password is using in RSA.</P><P></P><P>if i want to configure the two-factor authentication means what are the combination of authenticators are possible?</P><P></P><P>what are the restrictions are in two factor authentication? (like this feature is not possible i.e switch mangement, privileges, etc...)</P><P></P><P>can i&nbsp; use with RSA and username password authentication , can i configure user privillage levels for AD user?</P><P></P><P>i tried with identity sequence,it only authenticate one factor,if it is successful connection is established, is any way to authenticate if the two sequences are matched?&nbsp; instead of OR we need AND.</P><P></P><P>please share any sample two-factor authentication guide for reference.</P><P></P><P>Thanks,</P><P>P.Ramkumar.</P></BODY></HTML> Fri, 29 Nov 2013 18:05:56 GMT https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369793#M124469 ramkumar 2013-11-29T18:05:56Z https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369794#M124470 <HTML><HEAD></HEAD><BODY><P>Dear Friends,</P><P></P><P>I have solved that problem.</P><P></P><P>i have used that divice login using the RADIUS(AD) and enable Password using theTACACS+(RSA).</P><P></P><P>And Authorize using Radius.</P><P></P><P>now it is working fine, but i could not restrict the user access(read-only and read-write). i tried many method(authorize tacacs) but result remains same.</P><P></P><P>Thanks for all your support,</P><P>P.Ramkumar.</P></BODY></HTML> Wed, 22 Jan 2014 07:31:11 GMT https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369794#M124470 ramkumar 2014-01-22T07:31:11Z https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369795#M124471 <P>Hi RamKumar,</P><P>&nbsp;</P><P>Could you please post switch commands you have used to achieve this. I am planning to achieve more and less same scenario.</P><P>Thanks in advance</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P><P>&nbsp;</P> Tue, 17 Feb 2015 13:16:54 GMT https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369795#M124471 paragmahajan40 2015-02-17T13:16:54Z https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369796#M124472 <P>Hi dear</P><P>Could u share the way of two-factor?</P> Fri, 03 Jul 2015 04:43:45 GMT https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369796#M124472 Dong Yeol Park 2015-07-03T04:43:45Z https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369797#M124473 <P>Hello Ramkumar,</P> <P>I know this post is old. But could share the steps followed to achieve two factor authentication.</P> Wed, 30 Mar 2016 13:47:43 GMT https://community.cisco.com/t5/network-access-control/help-two-factor-authentication-in-acs-5-4/m-p/2369797#M124473 pratik.chamakale1 2016-03-30T13:47:43Z