Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
642
Views
0
Helpful
1
Replies

Cisco Secure ACS Compromised?

6aganguly
Level 1
Level 1

‎05-02-2005 06:37 AM - edited ‎03-10-2019 02:08 PM

Is anyone aware of any instances where Cisco Secure has been compromised to reveal TACACS+ user IDs/passwords?

This question stems from the issue of whether ACS servers should be added to an existing Windows domain or to a totally seperate domain of their own. If the existing domain is compromised so that someone now has Domain Admin rights on the ACS servers (but not an ACS admin ID), could this lead to them somehow cracking TACACS+ passwords or creating their own ID?

Are there any Proof-Of-Concepts out there?

Labels:
0 Helpful
1 Reply 1

didyap
Level 6
Level 6

‎05-06-2005 07:06 AM

ACS server can be told to authenticate against the domain that it is a member of and any domains that are trusted by that domain.

0 Helpful
Customers Also Viewed These Support Documents