ACS 5.2 user auth with token & password

dlin1 — Mon, 11 Mar 2019 01:14:18 GMT

I am migrating from ACS 4.2 to 5.2. In 4.2 you could assign one user to auth via Internal Database and another user to auth via Radius Token Server. I cannot find how to do this with 5.2. There is a note in the doc that states 'Identity-related attributes are not available as conditions in a service selection policy'. Does this mean that you can only choose one auth method for all users? If it is possible to have multiple methods, how am I able to accomplish this? Thanks......Darryl

ACS 5.2 user auth with token & password

Tarik Admani — Fri, 29 Jul 2011 07:23:48 GMT

Darryl,

You can do the same function but you can not create the users internally and point their password authentication to external servers.

ACS 5.x has a new feature which is called identity store sequences...for example.

UserA has an account that is stored locally on the ACS internal database and UserB has an account on the radius token server.

You can configure a identity store sequence which can either look in the Radius token server first and if the user is not found then will look for the user in the interal database. Then you can tie this sequence into your access policy.

Let me know if that helps,

Tarik

topic ACS 5.2 user auth with token & password in Network Access Control

ACS 5.2 user auth with token & password

ACS 5.2 user auth with token & password