Buy or Renew
Buy or Renew
NEW! Stay up-to-date on Cisco Secure Access: Software Release Notes and Announcements
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2080
Views
0
Helpful
1
Replies

Adding a TACACS AV-Pair

j.fanizzi
Level 1
Level 1

‎03-07-2003 08:10 AM - edited ‎03-10-2019 07:11 AM

We have some non-Cisco equipment that support TACACS for authentication. The only problem is when passing the privilege level from TACACS to the equipment. The equipment understands the attribute "priv_lvl" instead of the default "priv-lvl" supplied with ACS 3.1 for Windows.

Is there any way with ACS 3.1 for Windows to add a TACACS AV Pair? I would like to add the "priv_lvl" attribute for TACACS. I'm pretty sure that this was possible with ACS 2.3 for UNIX because all the attributes were configured in a text file and easily changeable.

Thanks in advance!

J.

Labels:
0 Helpful
1 Reply 1

mhoda
Level 5
Level 5

‎03-07-2003 06:08 PM

Hi Jimmy,

You are absolutely right that it is very easy to do it in ACS Unix. Unfortunately, with ACS NT/2K this not possible. It is limited to Radius dictionary though. So, user defined AV pair is possible only for Radius dictionary on ACS NT/2K not for ACS Unix.

Here is the list of AV Pair supported for TACACS+:

http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/acs31/acsuser/ac.htm#902411

Here is how you can add AV pairs for Radius dictionary:

http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/acs31/acsuser/ae.htm#231400

Thanks,

Mynul

0 Helpful
Customers Also Viewed These Support Documents