Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
2408
Views
0
Helpful
1
Replies

Cisco ISE authentication for EfficientIP IPAM solution

pranav nandgaonkar
Level 1
Level 1

‎06-26-2020 02:34 AM

 Hello,

 

I want to use Cisco ISE as authentication server for Efficient IP IPAM solution.

Could not find any config guide regarding the same using TACACS & RADIUS..

Any help could be appreciated.

 

Thanks in advance!

0 Helpful
1 Reply 1

Arne Bier
VIP
VIP

‎07-19-2020 06:46 PM

Hello @pranav nandgaonkar 

 

As long as the EfficientIP IPAM product supports standards-based RADIUS/TACACS+ then anything is possible in ISE.

The trick is to find out what attributes the IPAM application expects to receive back for a particular role, e.g. Super User, or Operator User, etc.

They don't seem to make their docs available without a login - so you would have to ask them for the RADIUS and/or TACACS+ attributes that a AAA server should return. 

In the meantime, do some reverse engineering by configuring the IPAM to use ISE (does it support RADIUS or TACACS+) and then add the IPAM in the ISE Device List. Then perform some authentication tests while running a tcpdump in ISE via the Admin node GUI Menu:

/Operations/Troubleshoot/Diagnostic Tools/TCP Dump

 

Analyse the tcpdump in Wireshark to see what the requests look like. In the absence of detailed documentation, that is how I would approach it.

 

0 Helpful
Customers Also Viewed These Support Documents