Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
461
Views
0
Helpful
1
Replies

TACACS+ Authentication not Working for MFA using Radius Server Sequence

kkaminsk
Cisco Employee
Cisco Employee

‎04-27-2018 11:30 AM

Folks,

Question from a very large Insurance customer: 

I am  not able to send Tacacs authentications over to a Radius Server Sequence,  only an “External Identity Source’ using ISE 2.3. Is this the only supported behavior for TACACS+ authentications?  The solution works for Cisco ACS 5 as a Radius server proxy.  It uses a one time token for multi-factor authentication.

Is this only supported as an External Identity Source?

0 Helpful
1 Reply 1

hslai
Cisco Employee
Cisco Employee

‎04-27-2018 12:19 PM

It seems the customer might be hitting CSCvg03448, which is resolved in ISE 2.3 Patch 2.

Otherwise, T+ in ISE does support external RADIUS servers.

0 Helpful
Customers Also Viewed These Support Documents