What RADIUS attribute to send is needed when adding a Cisco ASA to the NAC appliance for AAA Mangement Access?
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎01-17-2018 05:37 PM
I am trying to add a Cisco ASA to the NAC appliance for RADIUS Management Access. I started by enabling SNMP between the ASA and NetSight Console. But in order to add the ASA to the NAC appliance, I need to specify a RADIUS attribute to send. What do I need to put?
10 REPLIES 10
Options
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Get Direct Link
- Report Inappropriate Content
‎01-17-2018 07:10 PM
Hello Pierre,
as Radius attribute you need only the Service-Type like:
Service-Type=%CUSTOM2%
Corresponding I set the Accept Policy to 6 in Custom 2. Please be aware of the setting in the Management Attributes field. You need this settings to get access via GUI and SSH to your ASA.
As far as I found out you can not distinguish the privilege level!
Best regards
Stephan
as Radius attribute you need only the Service-Type like:
Service-Type=%CUSTOM2%
Corresponding I set the Accept Policy to 6 in Custom 2. Please be aware of the setting in the Management Attributes field. You need this settings to get access via GUI and SSH to your ASA.
As far as I found out you can not distinguish the privilege level!
Best regards
Stephan
Regards
Stephan
