Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
970
Views
5
Helpful
9
Replies

Possibility to use the same ACS 3.2 with two or more Cisco Equipments

mferhai
Level 1
Level 1

‎11-09-2004 01:39 AM - edited ‎03-10-2019 01:52 PM

Hi,

I have an ACS 3.2 version and i use it for aaa authentication for the PIX firewall.

Is it possible to use the sama ACS for aaa authentication for another cisco equipment, as i want to use it for the router authentication.

Thanks for your help

Labels:
0 Helpful
9 Replies 9

sachinraja
Level 9
Level 9

‎11-09-2004 01:54 AM

Of course. The ACS can be centrally used to manage all network components. you can add PIX,router,access server simultaneously and manage all these components through ACS. you just need to have IP connectivity to the component from the ACS server.

If your ACS server is behind PIX< you need to open TCP port 49 for the router to communicate with the ACS server.

Hope this helps.

All the best !! rate all replies if found useful.

0 Helpful

mferhai
Level 1
Level 1
In response to sachinraja

‎11-09-2004 02:10 AM

so,

on the network server detail on the ACS, we can add all the IP addresses of the component with comma (,) as sepration ?

Thanks a lot

0 Helpful

sachinraja
Level 9
Level 9
In response to mferhai

‎11-09-2004 02:22 AM

Hello.

No.. you will add the components one by one. Just configure the router details seperately as you did for the PIX. if the router is outside the PIX , open the port 49 TCP on the PIX . you cannot use a comma and configure all components at once.

0 Helpful

mferhai
Level 1
Level 1
In response to sachinraja

‎11-09-2004 02:47 AM

Thanks a lot for your help

0 Helpful

sachinraja
Level 9
Level 9
In response to mferhai

‎11-09-2004 03:09 AM

thanks.. please close off the post by checking that it solved your issue, so that people dont see it again.

All the best. rate the posts if found useful

0 Helpful

raju
Level 1
Level 1
In response to mferhai

‎11-10-2004 02:02 AM

Hello ,

You don't need to enter each equipments. You can use * instead if you have a lot . For example, you have some 50 Switches in one Vlan or subnet (10.12.10.1 --10.12.10.50 ) , then you can enter in ACS ver 3.2 as 10.12.10.*

We have approximately 150 Switches in Vlan 1 which obiviously requires lot of time to enter in ACS and we made in similar way.

Regards,

Raju

sachinraja
Level 9
Level 9
In response to raju

‎11-10-2004 02:07 AM

That was a useful info Raju. thanks.

0 Helpful

mferhai
Level 1
Level 1
In response to raju

‎11-10-2004 03:35 AM

Hi,

ok for the IP And for the naming host, how can i do if i have 50 equipments

Regards

Mohamed

0 Helpful

raju
Level 1
Level 1
In response to mferhai

‎11-10-2004 05:46 AM

Good question. Name does not matter . Just give a generic name like a Company name or location or Bldg name or Group of Switches etc.This is possible in ACS ver 3.2 only or may be above . I tried with ACS 3.0 ,it did not work. If you go to "Network Configuration " screen in ACS ver 3.2 , you will find the help on right side with "Adding a Network Device Group " and you can go thro it .

Regards...

0 Helpful
Customers Also Viewed These Support Documents