06-17-2011 01:34 AM - edited 03-10-2019 06:10 PM
hello,
it is possible de use two servers ACS 5.2 (primary and secondary) in active/ active? or just in active/ passive?
thank you for your reply.
06-18-2011 04:38 PM
Hi ,
There is no concept of Active/Active in ACS 5.x . How ever both acs can perform authentication. You can mention half device to point to ACS1(Primary) and other half to ACS2(Secondary) . However the master DB will be in Primary ACS
Thanks
Waris Hussain
06-28-2011 11:15 PM
Very Nice answer...Short and Crisp!!
Regards,
Ankur Thukral
Community Manager - Security & VPN
Cisco Support Community
06-29-2011 10:35 AM
We need to configure some of the AAA clients with first ACS as primary and for other devices configure the second ACS as primary
Switch 1:
Tacacs-server host
Tacacs-server host
Switch 2:
Tacacs-server host
Tacacs-server host
This is how we share the loads between 2 ACS servers .
Please let me know if you require any more clarifications
09-20-2013 02:28 AM
Yes HA is possible in ACS 5.2 :
Ref:
09-21-2013 02:57 PM
Hello aitkaddour,
I think that you can do the load balancing between both the ACS as told by Angus:-
Switch 1:
Tacacs-server host
Tacacs-server host
Switch 2:
Tacacs-server host
Tacacs-server host
Now if your both the ACS are active then your switches will perform their functions and will redirect the clients on their respective servers.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide