Cisco 2509 - Router - EN User Manual page 499
User guide
Hide thumbs
Also See for 2509 - Router - EN:
- Getting started manual (57 pages) ,
- User manual (108 pages)
Table of Contents
Advertisement
Chapter 12
Administering External User Databases
•
•
•
•
Cisco Secure ACS supports per-user group mapping for users authenticated with
a LEAP Proxy RADIUS Server database. This is provided in addition to the
default group mapping described in
page
To enable per-user group mapping, configure the external user database to return
authentication responses that contain the Cisco IOS/PIX RADIUS attribute 1,
[009\001] cisco-av-pair with the following value:
ACS:CiscoSecure-Group-Id =
where N is the Cisco Secure ACS group number (0 through 499) to which
Cisco Secure ACS should assign the user. For example, if the LEAP Proxy
RADIUS Server authenticated a user and included the following value for the
Cisco IOS/PIX RADIUS attribute 1, [009\001] cisco-av-pair:
ACS:CiscoSecure-Group-Id = 37
Cisco Secure ACS assigns the user to group 37 and applies authorization
associated with group 37.
78-14696-01, Version 3.1
Safeword token server
ActivCard token server
Vasco token server
RADIUS token server
12-12.
User Guide for Cisco Secure ACS for Windows Server
Group Mapping by External User Database,
N
Database Group Mappings
12-23
- Quick Links:
- Table of Contents
Hide quick links:
Advertisement
Table of Contents
