cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

817
Views
0
Helpful
2
Replies
kamal1352
Beginner

External User Autorization in ACS 5.1

Hi All,

  I want to set an ACS Server 5.1 for authentication from external OTP Server. When I set Profile Shell and other setting and set Cisco Router then I see authentication is  pass but authorization is fail so when I set internal user on ACS I see it work correctly. In the following I upload one picture from event that show authentication Passed but authorization fail.

How can I set it?

1 ACCEPTED SOLUTION

Accepted Solutions
Jagdeep Gambhir
Advocate

Kamal,


You need to enable Identity caching. It is used to allow processing of requests that do not perform authentication against the server. The cache retains the results and attributes retrieved from the last successful authentication for the subject.


Identity caching  can be enabled via advanced tab of the Token Server in ACS.




Hope that helps!

Regards,
~JG

Do rate helpful posts


View solution in original post

2 REPLIES 2
Jagdeep Gambhir
Advocate

Kamal,


You need to enable Identity caching. It is used to allow processing of requests that do not perform authentication against the server. The cache retains the results and attributes retrieved from the last successful authentication for the subject.


Identity caching  can be enabled via advanced tab of the Token Server in ACS.




Hope that helps!

Regards,
~JG

Do rate helpful posts


View solution in original post

Dear Jaqdeep

   Many Thanks It's Correct and your advice can solve my problem.

Kamal,

Content for Community-Ad