Hi,
I would like to setup a Cisco ACS server in such a way that the authentication is performed by an external RADIUS server (whose settings would be provided in ACS) and ASA acts as an AAA client.
So, the scenario would be an end user would login using a VPN client (like anyconnect client or VPN client)and the request would be sent to ASA which forwards it to ACS.Based on the request, ACS sends it to the RADIUS server and sends back the response to ASA (basically the user attributes would be sent from RADIUS). User would login based on the response sent from ACS.
Could any please help me how to set this up. I have an ASA and ACS server, but how can ACS recognize that ASA is its AAA client and how does ASA recognize ACS as an AAA server?
Thanks
I would like to setup a Cisco ACS server in such a way that the authentication is performed by an external RADIUS server (whose settings would be provided in ACS) and ASA acts as an AAA client.
So, the scenario would be an end user would login using a VPN client (like anyconnect client or VPN client)and the request would be sent to ASA which forwards it to ACS.Based on the request, ACS sends it to the RADIUS server and sends back the response to ASA (basically the user attributes would be sent from RADIUS). User would login based on the response sent from ACS.
Could any please help me how to set this up. I have an ASA and ACS server, but how can ACS recognize that ASA is its AAA client and how does ASA recognize ACS as an AAA server?
Thanks