Wireless Access

Reply
MVP
Posts: 112
Registered: ‎01-05-2016

How to set controller administrator role if using external server for controller admin login auth

Hi , we want to use external tacacs server to authenticate controller admin login, but need to set different role ( root and read only) for different user. How to set the parameter on the tacacs server so that the aruba controller can recognize the  return value of role setting from tacacs?  Another question, if we use external server for authentication, then when the external down, we are not able to login onto the controller?

Thanks in advance. 

Aruba
Posts: 1,644
Registered: ‎04-13-2009

Re: How to set controller administrator role if using external server for controller admin login aut

Start here:

 

TACACS+ Authorization:

http://community.arubanetworks.com/t5/AAA-NAC-Guest-Access-BYOD/TACACS-Session-Authorization/td-p/33536

 

 

Local Authentication vs. External:

http://community.arubanetworks.com/t5/AAA-NAC-Guest-Access-BYOD/Radius-vs-Internal-Mgmt-Authentication/m-p/203811#M15388

 

------------------------------------------------
Systems Engineer, Northeast USA
ACCX | ACDX | ACMX

MVP
Posts: 112
Registered: ‎01-05-2016

Re: How to set controller administrator role if using external server for controller admin login aut

thanks a lot for your reply

MVP
Posts: 112
Registered: ‎01-05-2016

Re: How to set controller administrator role if using external server for controller admin login aut

Sorry, one more question, do we need to add radius dictionary file for cisco ACS on ACS ? Thanks

MVP
Posts: 1,414
Registered: ‎11-30-2011

Re: How to set controller administrator role if using external server for controller admin login aut

if you use TACACS+ you don't need any libraries.

Search Airheads
Showing results for 
Search instead for 
Did you mean: