Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2332
Views
5
Helpful
3
Replies

ACS dictionary file

Go to solution
Kashish_Patel
Level 2
Level 2

‎06-27-2012 12:48 AM - edited ‎03-10-2019 07:14 PM

Hi Security Experts,

I have a requirement to add a third-party box (niksun appliance used for sniffing packets) as a radius client in ACS 4.2.

I have gone through the configuration guide of niksun to see how it should be done.

As per their documentation, I have to create a file on the ACS server ( our ACS is installed in a windows 2003 server) and this file should include Niksun Vendor ID. Then I have to include this file in ACS dictionary file.

Could you give me an example of how this is done on ACS 4.2? FYI our ACS is installed in a windows 2003 server.

PS : I rate useful posts.

Thanks,

Kashish

Labels:
0 Helpful
1 Accepted Solution

Accepted Solutions

Go to solution
maldehne
Cisco Employee
Cisco Employee

‎06-27-2012 06:03 AM

Well Well

You are talking about defining custom radius vendor on ACS.

This can be done using RDBMS synchronization feature , by having account actions.csv file built based on the dictionary defintion of the third party vendor and importing it back to ACS.

Check the following link for further info:

http://www.cisco.com/en/US/partner/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2/user/guide/A_RDBMS.html#wp148322

the following actiond codes should be the core for achieving your task:

350 ADD_UDV

352 ADD_VSA

353 SET_VSA_PROFILE

354 ADD_VSA_ENUM

355 ADOPT_NEW_UDV_OR_VSA

-------------------------------------------------------------------

Make sure to rate correct answer

View solution in original post

3 Replies 3

Go to solution
Kashish_Patel
Level 2
Level 2

‎06-27-2012 04:19 AM

Can some security expert help me out here?

0 Helpful

Go to solution
maldehne
Cisco Employee
Cisco Employee

‎06-27-2012 06:03 AM

Well Well

You are talking about defining custom radius vendor on ACS.

This can be done using RDBMS synchronization feature , by having account actions.csv file built based on the dictionary defintion of the third party vendor and importing it back to ACS.

Check the following link for further info:

http://www.cisco.com/en/US/partner/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2/user/guide/A_RDBMS.html#wp148322

the following actiond codes should be the core for achieving your task:

350 ADD_UDV

352 ADD_VSA

353 SET_VSA_PROFILE

354 ADD_VSA_ENUM

355 ADOPT_NEW_UDV_OR_VSA

-------------------------------------------------------------------

Make sure to rate correct answer

Go to solution
Kashish_Patel
Level 2
Level 2
In response to maldehne

‎07-05-2012 07:50 PM

Thanks maldehne.

On further reading, I found that same thing can be done using csutil. I used csutil and was able to add custom radius vendor. But I am sure RDBMS would also have worked.

Thanks,

Kashish

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents