12-12-2008 09:21 AM
Our firewalls are all set up with TACACS+ which uses Cisco ACS for ssh authentication.
I need to configure one of our firewalls for VPN using Radius, however since the firewall is already configured as a TACACS+ device on ACS I can't add it again as a Radius device, and if I change it to a Radius device then SSH stops working. Is there anyway to use the same ACS server for VPN using Radius and ssh authenitcation using TACACS+ for a single device?
Solved! Go to Solution.
12-12-2008 11:12 AM
Its easier than you think, you just need a seperate authentication profile for each protocol. You'll just need to have a different name for each profile (I personally just tack a -r or a -t on the end of the hostname)
12-12-2008 11:12 AM
Its easier than you think, you just need a seperate authentication profile for each protocol. You'll just need to have a different name for each profile (I personally just tack a -r or a -t on the end of the hostname)
12-12-2008 11:33 AM
Ha...yea that's pretty funny that I didn't even try that...easy enough, I like solutions like this.
Thanks!
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: