[RADIATOR] TACACS+ and CISCO ASA

Alexander Hartmaier alexander.hartmaier at t-systems.at
Mon Dec 12 11:11:08 CST 2011


Did you enable tacacs authentication and authorization on the ASA?

Am 2011-12-12 18:06, schrieb Kim, Steve:
>
> Alex,
>
> Thanks for the reply.
>
> The issue that I have is it prompts another authentication on ASA.
>
> I'm same config as you listed which works fine with routers and switch.
>
> This is config that I'm using:
>
> AuthorizeGroup netadmin permit service=shell cmd\* {priv-lvl=15}
>
> AuthorizeGroup netadmin permit .*
>
> Is there anything that I need to do on ASA?
>
> Thanks,
>
> Steve.
>
> *From:*radiator-bounces at open.com.au 
> [mailto:radiator-bounces at open.com.au] *On Behalf Of *Alexander Hartmaier
> *Sent:* Monday, December 12, 2011 11:36 AM
> *To:* radiator at open.com.au
> *Subject:* Re: [RADIATOR] TACACS+ and CISCO ASA
>
> Yes, working here fine since years, what problems are you encountering?
>
> config:
> AuthorizeGroup Admins      permit service=shell cmd\* {priv-lvl=15}
>
> Best regards, Alex
>
> Am 2011-12-12 17:34, schrieb Kim, Steve:
>
> Does anyone try CISCO ASA authentication with TACACS+?
>
> I have TACACS+ working with CISCO routers and switch, but not on ASA.
>
> If anyone has this working, can you share what you did?
>
> Thanks,
>
> Steve.
>
>
>
> _______________________________________________
> radiator mailing list
> radiator at open.com.au  <mailto:radiator at open.com.au>
> http://www.open.com.au/mailman/listinfo/radiator
>
>
>
> *"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
> T-Systems Austria GesmbH Rennweg 97-99, 1030 Wien
> Handelsgericht Wien, FN 79340b
> *"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
> Notice: This e-mail contains information that is confidential and may 
> be privileged.
> If you are not the intended recipient, please notify the sender and then
> delete this e-mail immediately.
> *"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*"*
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://www.open.com.au/pipermail/radiator/attachments/20111212/b3c109ba/attachment.html 


More information about the radiator mailing list