12-29-2011 03:22 AM - edited 03-10-2019 06:40 PM
HI,all
Can somebody shed some light on how to configure ACS for downloading user base acl.
We have used TACCAS for remote access user authentication.
Do I required any config on ASA or i have to just configure Policy element /authorisation profile and bind that profile with user?
thanks in advance
Solved! Go to Solution.
12-29-2011 10:29 AM
12-29-2011 10:29 AM
Hello Sandeep,
First of all, if you are using TACACS+ for VPN Remote Access then Downloadable ACL's are not supported. You might need to change the ASA configuration to use RADIUS as the authentication protocol instead.
I am attaching a configuration example to this post.
Hope this helps.
Regards
12-29-2011 10:29 AM
01-02-2012 04:16 AM
Dear Carlos,
Thanks for reply.
That mean i have to change authentication method RADIUS for remot access vpn users and also I have to use radius for authorizaton.
01-03-2012 07:22 AM
Hello Sandeep,
You are right. RADIUS includes Authentication/Authorization on the same packet which causes the authentication response from the RADIUS server to include the Authorization Attributes as well.
Regards.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide