This document provides an example of TACACS+ authentication configuration on a Nexus switch. By default, if you configure the Nexus switch in order to authenticate through Access Control Server (ACS), you are automatically placed in the network-operator/vdc-operator role, which provides read-only access. In order to be placed in the network-admin/vdc-admin role, you need to create a shell on the ACS 5.2. This document describes that process.
Ensure that you meet these requirements before you attempt this configuration:
Define your Nexus switch as a client in ACS.
Define the IP address and an identical shared secret key on the ACS and Nexus.
Note: Create a checkpoint or a backup on Nexus before you make any changes.
The information in this document is based on these software and hardware versions:
Nexus 5000, 5.2(1)N1(1)
The information in this document was created from the devices in a specific lab environment. All of the devices used in this document started with a cleared (default) configuration. If your network is live, make sure that you understand the potential impact of any command.
Hi all, I am upgrading a Cisco ISE virtual cluster from 2.3 to 2.7, and need to change the Guest Operating System from 7.0 to 7.6 in VMware. When is the best time to make this change? Should I wait until the upgrade is complete, and then po...
Hi, i need some help with this config, i already read several books, other posts and the administration guide but i'm not entirely sure how to enable the ISe to send alarm notifications, since there isn't any place where to put the sender email and passwo...
If device tracking isn't configured correctly, or if it can't track the MAC and the IP address mapping of an interface, dACL won't be applied correctly from ISE, what about VLAN assignment via ISE? will it be affected as well?
Hello. I've been working with the Cisco API interacting with different FMCs for a while, and I notice that every physical device has the same domain UUID, which is "e276abec-e0f2-11e3-8169-6d9ed49b625f".In my side of the API programming I considered the d...
Por favor, me podrian ayudar ya que utilizamos el servicio en varios equipos, pero realmenteno podemos hacer funcionar el AnyConnect en una Mac con sistema operativo High Sierra, y necesitamos poder hacer funcionar la vpn, por favor.Si me pueden deci...