Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
1563
Views
0
Helpful
3
Replies

Sending "tunnel-group" name from Cisco ASA to Cisco ACS 5.2?

CCL Network Services Group
Level 1
Level 1

‎09-01-2011 10:05 AM

Is it possible to send this and how to evaluate it on Cisco 5.2 to selectivily route the Access-request to a specific identity store

Labels:
0 Helpful
3 Replies 3

Herbert Baerten
Cisco Employee
Cisco Employee

‎09-05-2011 01:25 PM

Hi again Tony,

just to get this question off the "unanswered" list: this would also fall under the enhancement I mentioned in the other thread:

CSCsw31922    Radius upstream VSAs (Tunnel Group,Client type) for VPN policy decisions

hth
Herbert
--
If this post answers your question, please click the "Correct Answer" button

0 Helpful

jan.nielsen
Level 7
Level 7
In response to Herbert Baerten

‎10-11-2011 01:32 PM

I am having the same issue, none of the values i can see and use in DAP, like tunnel-group name, are sent to my ACS 5.2, so i can't use ACS for policy decisions. Are you saying that this is not supported ???

0 Helpful

Herbert Baerten
Cisco Employee
Cisco Employee
In response to jan.nielsen

‎10-12-2011 02:25 AM

Hi Jan,

yes that's correct.

CSCsw31922 is an enhancement request to add this functionality to ASA. It is currently in "O" (Open) state which means it is being worked on, but there is no ETA. For more information I would suggest to contact your local Cisco sales team.

hth

Herbert

0 Helpful
Customers Also Viewed These Support Documents