cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Announcements
Announcements
Choose one of the topics below to view our ISE Resources to help you on your journey with ISE

This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other best practices.

433
Views
0
Helpful
1
Replies
Highlighted
Beginner

NMS 9000 via ACS 5.3

Hi All

I need to get the nms 9000  to work with the new ACS 5.3.

Looking at the existing ACS 4.0 we have the following attribute set -

cisco-av-pair=shell:roles*"network-admin"

and looking at the below i think we need to have this set somewhere

in order for the ACS to work with the MDS 9000 -

http://www.cisco.com/en/US/docs/storage/san_switches/mds9000/sw/rel_2_x/fm/configuration/guide/radius.html

However how do i put this into the new ACS 5.3

I can put it in like this -

Attrbute              requirement                       value

shell:roles          mandatory                         network-admin

or do i put it in like this -

cisco-av-pair=shell:roles   mandatory            network-admin

Anyone any ideas ?

Steve

Everyone's tags (6)
1 REPLY 1
Advocate

NMS 9000 via ACS 5.3

Steve,

If you are using other policies for ios device then your best bet is to use the second one but set the operator to optional. Mandatory means the = and optional means * when configuring custom attributes through ACS.

Thanks,

Tarik Admani

Tarik Admani
*Please rate helpful posts*