08-18-2017 04:07 AM
Hi All,
have checked that external identity source didn't include TACACS+ (AD, LDAP, ODBC, Radius token, RSA SecureID and SAML supported), just wonder if ISE admin login authentication can support TACACS+?
Many thanks,
CH
Solved! Go to Solution.
08-18-2017 02:54 PM
Neither ISE admin web UI or CLI is currently supporting TACACS+. If you have customers interested on such, please contact our PM team.
The aaa configuration command appears accidentally exposed in some particular ISE version/patch combination but never supported officially.
08-18-2017 04:58 AM
Currently, for the Web GUI, you can choose from the External Identity Sources that can be found at Administration > Identity Management > External Identity Sources (excluding Social Login in v2.3). TACACS+ is not listed and cannot be leveraged for login at the Admin Portal.
The Identity Sources used for the Admin Portal do not include servers added to Work Centers > Device Administration > Network Resources > TACACS External Servers and therefore, cannot be leveraged.
From CLI, You can configure the command aaa authentication tacacs+ server <IP or hostname> key <TACACS Shared Secret>, but this will only be for CLI login.
08-18-2017 02:54 PM
Neither ISE admin web UI or CLI is currently supporting TACACS+. If you have customers interested on such, please contact our PM team.
The aaa configuration command appears accidentally exposed in some particular ISE version/patch combination but never supported officially.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide