Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
903
Views
0
Helpful
1
Replies

Cisco Prime Infrastructure with AAA server

Mohamed Sayed
Level 1
Level 1

‎02-08-2014 12:16 PM

Hi all,

I have installed cisco PI and I have AAA server in my network and I added this server (AAA) to the PI.

I want to know what are the benefits of this synch between AAA server and PI ???

thanks alots.

Labels:
0 Helpful
1 Reply 1

Marvin Rhoads
Hall of Fame
Hall of Fame

‎02-08-2014 02:52 PM

Not a whole lot.

You can set your PI to use an external AAA server for authentication to PI itself (reference). Authorization (i.e what the authenticated user may do on the server) requires settings local to the PI server. PI itself doesnt really "manage" any AAA servers other than the most basic up/down ping test. You might be able to load the server MIBs and get a little more out of it but that's really not what PI is designed to do.

You can setup ISE (if you use it) as a data source in PI to show you what users have authenticated to ISE-managed devices.

Prime LMS (before it was Prime and just plain LMS back to the CiscoWorks days) used to be able to rely on a TACACS server for authorization but the integration was a bit complicated and Cisco moved away from that as LMS moved to v4 and their TACACS server product (ACS) moved to v5.

Of coure the crredentials PI uses to log into devices can be on the AAA server but that's a device - AAA integration, not really a PI integration.

0 Helpful
Customers Also Viewed These Support Documents

Review Cisco Networking for a $25 gift card