cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
520
Views
0
Helpful
1
Replies

ACS 5.2 auth conditions

networknoob
Level 1
Level 1

I'm tring to find the best way to format the rules for our needs. We have users authing over wireless and the controllers are passing radius over to the acs. Currently we identify to ad, ldap, and cisco guest server. If the user name matchs in one of those systems, they are allowed. We'd like to impose that in ad, they need to be cos1 or 2. If I add the compound condition to match that, the guest server auths stop working. How do you write out the condition? Thanks.

1 Reply 1

jrabinow
Level 7
Level 7

Won't help directly and so may just be for information

If upgrade to ACS 5.3 there is the following new attribute in the System dictionary that could help you: AuthenticationIdentityStore

This attribute holds the name of the identity store that authentication was successfully performed against. best to also check with AuthenticationStatus (in same dictionary) being AuthenticationPassed

Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: