cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1084
Views
0
Helpful
4
Replies

CAN Use CiscoI ISE to manage Microtik router Logins and Permissions by Group

Dear all

Can we Use Cisco ISE to manage Logins and Permissions by Group.

we have cisco ise 2.4 used for tacacs So in the future we need implement authentication with microtik.

Thanks

2 Accepted Solutions

Accepted Solutions

Colby LeMaire
VIP Alumni
VIP Alumni

Absolutely!  You could use different groups within ISE if you are creating the accounts within ISE.  Or you could use Active Directory or LDAP groups as well.

View solution in original post

I did some digging, Microtik has no support TACACS, but it does support RADIUS for device admin functions.

There is a guide on the Microtik website that explains the configuration of AAA for their product. It says ACS, but ISE replaced the ACS functionality so it will work the same way.

https://wiki.mikrotik.com/wiki/Use_Cisco_ACS_to_manage_Logins_and_Permissions_by_Group

View solution in original post

4 Replies 4

Colby LeMaire
VIP Alumni
VIP Alumni

Absolutely!  You could use different groups within ISE if you are creating the accounts within ISE.  Or you could use Active Directory or LDAP groups as well.

Surendra
Cisco Employee
Cisco Employee
Please elaborate your requirement in detail. In general, yes, ISE can manage logins and permissions based on groups.

Thank you

in my network i have Cisco ISE Appliance install HQ 2 node and use function TACACS+ for control permission for access to router CE PE for Admin manage or change configuration on router.  So in the future we will buy Microtik router for support customer and install on branch  and i need to control permission for manage or change configuration of microtik by Cisco ISE like same fuction TACACS+ for control router Cisco in existing.

I did some digging, Microtik has no support TACACS, but it does support RADIUS for device admin functions.

There is a guide on the Microtik website that explains the configuration of AAA for their product. It says ACS, but ISE replaced the ACS functionality so it will work the same way.

https://wiki.mikrotik.com/wiki/Use_Cisco_ACS_to_manage_Logins_and_Permissions_by_Group
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: