Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
324
Views
0
Helpful
2
Replies

TACACS Auth on FWSM 1.1(3)

david.byrne
Level 1
Level 1

‎08-18-2004 07:30 AM - edited ‎02-21-2020 01:18 PM

Has anyone configured this? If so I would very much appreciate the procedure you used to do it, I presume you also need a TCP connection on port 49 defined in the access list to you ACS servers.

Many thanks in advance,

David

Labels:
0 Helpful
2 Replies 2

scoclayton
Level 7
Level 7

‎08-18-2004 11:19 AM

David,

I assume you are referring to authenticating admin sessions via TACACS. If not, please let me know.

Assuming so, take a look at the following document:

http://www.cisco.com/en/US/products/hw/vpndevc/ps2030/products_tech_note09186a0080094e71.shtml

The FWSM uses the same CLI as the PIX for this type of setup.

And finally, you do not need an ACL entry allowing TCP/49 to the FWSM. ACL's on the FWSM/PIX only affect traffic going *through* the firewall rather than *to* the firewall. This is the same concept as not having to allow TCP or SSH in your access-list in order to manage the FWSM.

Hope this helps.

Scott

0 Helpful

david.byrne
Level 1
Level 1
In response to scoclayton

‎08-19-2004 03:26 AM

Scott,

This is fine, thanks for your help.

David

0 Helpful
Customers Also Viewed These Support Documents