Hi, all
we have a couple of ACS with version Cisco Secure ACS 5.4.0.46.6, and we are trying to add custom attributes in a new shell profile for setting the privilege level for Nexus switches, according to:
http://www.cisco.com/c/en/us/support/docs/security/secure-access-control-system/115925-nexus-integration-acs-00.html
and
http://www.cisco.com/c/en/us/support/docs/security/secure-access-control-system/115926-tacacs-radius-devices-00.html#ns
The problem is setting the attribute/value pair, since when we use:
Attribute: cisco-av-pair
Requirement: Optional and Mandatory (we have tried both)
Value: shell:roles*"network-admin vdc-admin"
we add it, and when we submit the custom attribute, ACS GUI gets logged out, not saving anything at all.
We have checked that the problem is adding quotation marks in the value text field. If we remove "", it doesn't log out, but the attribute is not correctly provided. Quotation marks seem to be necessary for our requirement. We have tried on Internet Explorer 11 and Firefox 43 with similar results. Any idea how to solve this?
Thanks is advance!
Ivan