Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
569
Views
0
Helpful
1
Replies

ACS replication of IP Address Pools

derekgaff
Level 1
Level 1

‎05-17-2005 06:52 AM - edited ‎03-10-2019 02:09 PM

Hi

I have this situation. I have 3 ACS Servers located in different parts of the our Network. One is primary and the other two are backup. What I want to do is configure these so that all the configiration is only done on one server. This is working for users/groups/devices and so on, but I cannot find a way to replicate the IP Address pools, is there some hidden switch or something to enable this.

regards

D

Labels:
0 Helpful
1 Reply 1

gfullage
Cisco Employee
Cisco Employee

‎05-17-2005 05:36 PM

IP pools are purposely not replicated automatically, no way around it. This is to avoid the situation where users authenticating to two different ACS servers get allocated the same IP address.

Basically there's nothing in ACS where the primary and backups talk to each other about what IP addresses they've allocated (this woul be huge task and require some new sort of communication mechanism between servers). If the same IP pool is configured on all 3 servers, they'll just blindly allocate the next available IP address to users, and you'll run into scenario's where two (or more) users get given the same address.

The pool is therefore purposely not replicated, which means you have to go in manually and configure it, making sure you configure a UNIQUE pool across the 3 servers. This only has to be done once and is then there forever.

0 Helpful
Customers Also Viewed These Support Documents