Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I searched for a long time unsuccessfully trying to find a resolution to my SSG320M and Cisco ACS v5.x TACACS dilemma. I finally got it working in my network, so I'm posting the resolution here in case anyone else is looking.Configure the Juniper (C...
use “no errdisable detect cause gbic-invalid” command
Most likely Cisco Bug: CSCuj31712 - certain Vendor SFP force ports to err-disable:
https://quickview.cloudapps.cisco.com/quickview/bug/CSCuj31712
aaa accounting only has to do with logging the commands, not whether the commands are authorized.You generally also want your authentication and authorization to come from the same place, such as the ACS only.Your config: aaa new-model aaa authenti...
Assuming Cisco ACS v5.x:Create a new Shell Profile: Policy Elements > Authorization and Permissions > Device Administration > Shell ProfilesClick the Create button at the bottom of the page.On the General tab, give the profile a name, then go to ...
On my SSG, I have the following: set auth-server "Local" id 0 set auth-server "Local" server-name "Local"On the SSG webGUI, I go to Configuration > Admin > Administrators and there is a drop-down for "Admin Auth Server." I have "Local/CiscoACS" se...
Marlon,I have pasted in a config below that I did for our ScreenOS firewalls to work with Cisco ACS v5.2. This config may not work since yours is Junos, but it might get you closer to figuring it out. Also, if you haven't been on the Juniper J-Net ...
