cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
1402
Views
0
Helpful
1
Replies

vdc role based authentication setup on ACS?

Thomas Park
Level 1
Level 1

Hi.

I'd read that Nexus 7K can have multiple VDCs.

and they have different roles (vdc-admin/operator, network-admin/operator)

How would you configure this different roles per VDC on ACS?

Default account name for each VDC is admin! How do you know which admin is referring to which VDC admin?

Any configuration guide on setting up the ACS for Nexus VDC?

Any suggestion or link will be helpful!

Thanks

1 Reply 1

Reza Sharifi
Hall of Fame
Hall of Fame

Hi,

Have a look at this doc.

roles

Lists all the roles to which the user belongs. The value field is  a string that lists the role names delimited by white space. For  example, if the user belongs to roles network-operator and vdc-admin,  the value field would be network-operator vdc-admin. This subattribute,  which the TACACS+ server sends in the VSA portion of the Access-Accept  frames, can only be used with the shell protocol value. The following  examples show the roles attribute as supported by Cisco ACS:

shell:roles=network-operator vdc-admin 

shell:roles*network-operator vdc-admin

http://www.cisco.com/en/US/docs/switches/datacenter/sw/5_x/nx-os/security/configuration/guide/b_Cisco_Nexus_7000_NX-OS_Security_Configuration_Guide__Release_5.x_chapter_0110.html

HTH