Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
299
Views
0
Helpful
0
Replies

ACS 5.6 - AAA with Service Accounts

CSCO11733516
Level 1
Level 1

‎06-05-2015 10:05 AM - edited ‎03-10-2019 10:47 PM

Hey guys-

 

We are starting to stand up ACS 5.6 into our network for network access.  When a user initially logs in, ACS will make a RADIUS call out to CyberArk/SecureNet (cloud based two-factor) and then receive a token, which the user uses to login.

A question comes to mind, looking for some recommendations/suggestions.

 

With ACS, how can we handle service accounts?  Service accounts such as Cisco Prime and Orion Monitoring, which are appliances used to search the network.  These accounts cannot obtain a token obviously, so is there a way to setup ACS to enforce something like this on network devices (mainly IOS/NX-OS):

-  If a regular user - authenticate via SecureNet

-  If a service account - utilize X to login (something to avoid having to get a token)

 

 

Labels:
0 Helpful
0 Replies 0
Customers Also Viewed These Support Documents