Solved: External User Autorization in ACS 5.1

kamal1352 · ‎02-23-2011

Hi All,

I want to set an ACS Server 5.1 for authentication from external OTP Server. When I set Profile Shell and other setting and set Cisco Router then I see authentication is pass but authorization is fail so when I set internal user on ACS I see it work correctly. In the following I upload one picture from event that show authentication Passed but authorization fail.

How can I set it?

Jagdeep Gambhir · ‎02-23-2011

Kamal,

You need to enable Identity caching. It is used to allow processing of requests that do not perform authentication against the server. The cache retains the results and attributes retrieved from the last successful authentication for the subject.

Identity caching  can be enabled via advanced tab of the Token Server in ACS.


Hope that helps!

Regards,
~JG

Do rate helpful posts

View solution in original post

Jagdeep Gambhir · ‎02-23-2011

Kamal,

You need to enable Identity caching. It is used to allow processing of requests that do not perform authentication against the server. The cache retains the results and attributes retrieved from the last successful authentication for the subject.

Identity caching  can be enabled via advanced tab of the Token Server in ACS.


Hope that helps!

Regards,
~JG

Do rate helpful posts

kamal1352 · ‎02-24-2011

Dear Jaqdeep

Many Thanks It's Correct and your advice can solve my problem.

Kamal,