02-03-2016 01:27 PM
I am trying to configure TACACS for WLC and am following this youtube video from TAC but when I get to the step where I pick device type WLC all I see is “All device types”
Any guidance appreciated.
02-03-2016 01:36 PM
Device Types are groups you have to configure. You can name them whatever you want i.e. Device Type: Wired, Device Type: Wireless, Device Type: VPN. You can configure then by going to Administration -> Network Resources -> Network Device Types in ISE 2.0.
Regards,
-Tim
02-03-2016 03:00 PM
OK thanks, I got past that. Now I am getting authenticated OK but am failing in the authorization with "15020 Could not find selected Shell Profiles" but I have the profile configured and even tried to call the default profile with the same results.....
02-04-2016 08:54 AM
In addition to Krishnan's post - the attribute we need to push from ISE role1=ALL is case sensitive. If in case it doesn't work -check debugs on the WLC side by running debug aaa tacacs enable - you should see it coming as arg[0] = [9][role1=ALL]
~ Jatin
02-03-2016 05:09 PM
Please follow the How to guide on TACACS for WLC.
http://www.cisco.com/c/dam/en/us/td/docs/security/ise/how_to/HowTo-TACACS_for_WLC.pdf
-Krishnan
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide