05-06-2013 07:25 AM - edited 03-10-2019 08:23 PM
Hi everyone,
I am hoping to get some advice on an upcoming upgrade. We currently have a Cisco ACS 4.2 Solutions Engine. (That's the physical appliance). It is coming to end of support and we are looking to replace. Here is what we use it for today:
1. TACACS+ AAA for all routers and switches. Gives us great reporting.
2. PEAP Authentication for our wireless network off of a 5508 Wireless Controller.
3. Machine Access Restrictions for our Wireless network. (Basically Machine Authentication)
I believe that is all we use it for today. That said, hoping to get some of your opinions on a replacement.
Any advice or opinions are greatly appreciated.
Thanks,
Josh
05-06-2013 07:28 AM
All these features are avialble in ACS 5.4 latest version.
Jatin Katyal
- Do rate helpful posts -
05-06-2013 03:27 PM
Hi Josh,
To add up to the above post, You will have to undergo the migration process from going to ACS 4.2 to ACS 5.4.
Here is the migration guide:
Regards
Minakshi
(Do rate the helpful posts )
05-06-2013 04:46 PM
Also looking at the Cisco ISE Base package. We are getting into the BYOD stuff as well. What do you guys think about using ISE to replace my ACS?
05-06-2013 05:04 PM
Looking at your current requirements, not a right time to go with ISE as it doesn’t natively support TACACS+, we’ll need to use the ACS for that. Tacacs+ will be supported in ISE 2.0
ISE 2.0 its a WAY out, no timeline yet.
Jatin Katyal
- Do rate helpful posts -
05-06-2013 05:00 PM
Hi Josh,
Thats where Cisco is moving towards.. So you should replace ACS with ISE, However Tacacs is not supported on the ISE, But Radius will have Everything that ACS supports.
Regards
Minakshi (Do rate the helpful posts )
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide