This document provides an example of TACACS+ authentication configuration on a Nexus switch. By default, if you configure the Nexus switch in order to authenticate through Access Control Server (ACS), you are automatically placed in the network-operator/vdc-operator role, which provides read-only access. In order to be placed in the network-admin/vdc-admin role, you need to create a shell on the ACS 5.2. This document describes that process.
Ensure that you meet these requirements before you attempt this configuration:
Define your Nexus switch as a client in ACS.
Define the IP address and an identical shared secret key on the ACS and Nexus.
Note: Create a checkpoint or a backup on Nexus before you make any changes.
The information in this document is based on these software and hardware versions:
Nexus 5000, 5.2(1)N1(1)
The information in this document was created from the devices in a specific lab environment. All of the devices used in this document started with a cleared (default) configuration. If your network is live, make sure that you understand the potential impact of any command.
When configuring ZBFW, I have configs like this:policy-map type inspect MYPMAP
class type inspect everything
inspectIf I configure a bypass rule, it will be appended in the end, after everything but before class-default. Is there a way to add a classif...
I thought I had this sorted out earlier today but...not so much. Deploying a Cisco ASA 5506-x as firewall/router. Trying to accomplish some smarter VLAN'ing to segment traffic on my office/home network. Core switch is Cisco 3560cg. There's some other...
Hi can we configure WCCP with HSRP in cisco switches. we have 2 x switches and 2 x wsa and each WSA will be connecting with each swicth and we want yo run HSRP however i have couple Query 1- will WCCP work with HSRP ?2- is there...
Hey everyone,I seem to be having a strange issue with Tacacs+ on a 3504WLC. Authentication to this T+ server works fine on my other cisco devices, but for some reason, is giving me the '-6 Internal Error' remark. I havent been able to find any correlating...