ACS v. 5.1 Authentication methods

patrick.bur · ‎08-17-2012

Hello,

I hope my question has not been yet asked. But it's so complicated to explain that I don't even know on which keywords to search.

I'd like to define 2 types of users on my ACS:

1- Users who use basic authentication with a password

2- Users who use an external token server.

The issue is that I don't manage to make both work together:

I've created 2 service selection rules and depending on how I order them, the token user can authenticate but not the fix password one and vice versa.

Does someone either have an idea or a clear documentation about how to configure this simple feature on the ACS?

In version 4, this was really easy: 1 group with ext authentication, and one with local DB password.

In version 5, I do not find how to do it.

Thanks a lot!

Patrick

Tarik Admani · ‎08-17-2012

Patrick,

Are the usernames present in both databases? If not,you can create an identity store sequence ( it will check AD then RSA) but you can set the sequence in any order you like:

http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.1/user/guide/users_id_stores.html#wp1054132

Tarik Admani
*Please rate helpful posts*

ACS v. 5.1 Authentication methods

Nexus Dashboard: acs コマンドについて (version 3.x)

ACS Upgrade Path 一覧(5.1/5.2/5.3/5.4/5.5/5.6/5.7/5.8/5.8.1)

ACS 5.1 での Support Bundle の decrypt(復号化) 手順

AnyConnect VPN Authentication and Encryption methods on ASA

Re: New Deployment Method for Smart Licensing