Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
405
Views
0
Helpful
2
Replies

Separate Inbound/Outbound Auth

iholdings
Level 1
Level 1

‎03-21-2002 08:51 AM - edited ‎03-08-2019 10:07 PM

Is it possible to configure separate inbound and outbound passwords in ACS 2.4 (TACACS+)?

Labels:
0 Helpful
2 Replies 2

lisa.hall
Level 2
Level 2

‎03-28-2002 07:06 AM

What do you mean by inbound or outbound? You mean if your users are coming in via a NAS or going out via the LAN/WAN? Describe your topology and what you are trying to accomplish more accurately.

0 Helpful

iholdings
Level 1
Level 1
In response to lisa.hall

‎03-28-2002 07:17 AM

We wish to restrict specific users LAN outbound Internet access while at the same time allow the same users inbound access to our mail server via a web browser. Our thinking was to use the same ACS account configured with separate inbound and outbound passwords and not give the user the outbound password. I've since discovered this currently can't be accomplish in ACS. However, Cisco suggested configuring the Cisco IOS Authentication Proxy feature that provides dynamic per-user authentication and authorization. I think we'll go that route. Thanks for your input.

0 Helpful
Getting Started

Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community:

Customers Also Viewed These Support Documents