Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
322
Views
0
Helpful
1
Replies

can i create differnet groups on my acs for juniper & cisco boxes

mulhollandm
Level 1
Level 1

‎01-12-2011 03:03 AM - edited ‎03-10-2019 05:42 PM

folks

i want to use an acs appliance i have for tacacs authentication for both juniper and cisco devices

my issues is that i use the same username but differnet passwords for juniper and for cisco

is it possible to use the same username but different passwords for different vendor devices

i can't see how it can be done but i have to ask

thanks to anyone taking the time to reply or to read this

greatly appreciated

Labels:
0 Helpful
1 Reply 1

Federico Ziliotto
Cisco Employee
Cisco Employee

‎01-12-2011 03:22 AM

Hello,

In ACS internal database (and in most common databases in general) the user-to-password mapping is one-to-one.
So as long as the same user is configured to access both Juniper and Cisco devices, the same password must be used too.

A way I could think to work this around would be to create the same user (with different passwords) on two different databases (like the internal one and AD, for example).

Then, through a Network Access Profile (NAP) on ACS, you can enforce to check the user's credentials against a specific database for Juniper devices and against the other database for Cisco devices.

Regards,

Fede

--
If  this helps you and/or answers your question please mark the question as  "answered" and/or rate it, so other users can easily find it.

0 Helpful
Customers Also Viewed These Support Documents