03-15-2010 02:57 PM - edited 03-10-2019 05:00 PM
Can anyone point me to a document or explain how I can use the external databse rather than the internal database to be able to log on to a device using tacacs+? The ACS 5.1 is already integrated with AD and I have tacacs+ working with the internal database, thanks.
03-16-2010 05:52 AM
Set the Identity source of your network administration policy to Active directory rather than Internal. (Probably called 'AD1'). If you want to use _both_ then create an Identity Store Sequence first, that checks internal followed by AD, and use that Identity Store Sequence as the Identity source for your policy.
03-16-2010 06:54 AM
Thanks I had already done that turns out what I needed to do was to customize the conditions and add External groups.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide