AAA, NAC, Guest Access & BYOD

 View Only
last person joined: 3 days ago 

Clearpass, CPPM, OnBoard, OnGuard, Guest, QuickConnect, AirGroup, IntroSpect

How TACACS Authentication & Authorization works in ClearPass Cluster

By esupport Unpublished

  
Q:

How TACACS Authentication & Authorization works in ClearPass Cluster



A:
  • TACACS Authentication and Authorization works within the node.
  • It will not be synced across cluster node.
  • If TACACS Authentication request goes to Node1, subsequent Authorization request should go to the same node. 
  • If the Authorization goes to different node then it will not authorize the request.
  • Also, ClearPass cache username with device IP for 24 hours. 
  • This will be configured under Administration » Server Manager » Server Configuration » Select the server » Service Parameters » Select Service: TACACS Server
    • TACACS+ Profiles Cache Timeout
  • This profile cache also within the ClearPass node only.
0 comments
18 views