Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
661
Views
0
Helpful
1
Replies

Control access using Radius without ACS

lfkentwell
Level 1
Level 1

‎07-24-2012 11:22 PM - edited ‎03-10-2019 05:44 AM

I want to log into my IPS using my existing RSA SecurID using Radius.  Is it possible to use a Radius attribute in the RSA to tell the IPS what privillege\role the user is?  The idea is I dont create users on the IPS, if a user tries to logon it authenticates them via radius running on the RSA server and if the user is allowed to log onto that clietn IP (the IPS) then it will allow them to logon but also pass a message back to the IPS to say this person has full admin access.  Is that possible using an attribute?  ANy guidance would be great.                  

Labels:
0 Helpful
1 Reply 1

sawgupta
Level 1
Level 1

‎07-31-2012 03:03 AM

Yes, you should be able to specify the user role on the radius server.

http://www.cisco.com/en/US/docs/security/ips/7.0/configuration/guide/cli/cli_setup.html#wp1276213

Regards,

Sawan Gupta

Thanks & Regards, Sawan Gupta
0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking products for a $25 gift card