Need help setting up Tacacs or Radius authentication on NetMri

Not applicable
Posts: 1
5027     0

Need help setting up Tacacs or Radius authentication on NetMri

Re: Need help setting up

Posts: 5
5028     0

Hey Leonid,

I have configured authentication on Cisco ACS 5.2 and 4.1. You need to input the NetMRI user roles in the shell profile of each user, or if they are part of a group, configure the user roles in the group. Then configure the users in NetMRI, configure the NetMRI to authenticate to TACACS (or Radius) and test out the authentication. 

Is there a table that they

Posts: 4
5028     0

Is there a table that they provide as to what goes with what because I have to see that informaiton.

How do user roles work in an ACS shell profile?

Posts: 239
5028     0

I wasn't aware that user roles could work with ACS AAA.  We've used ACS just for authentication but the roles must be defined locally.  How does one indicate that JoeUser has five roles in device groups A & B, and six roles in device group C?

You can't really do that

Posts: 353
5028     0

You can't really do that right now. In order to do that the product will need to support user groups. You would assign those groups to specific roles for specific device groups, and then the product would read the user group from the external AAA server when you authenticate. This also would mean that a user would not need to be defined within the product in order to use it - they would only have to be in the AAA server with the right group.

This is not supported today, so if you are interested in that let your account team know so they can file an RFE.

Re: You can't really do that

Posts: 30
5028     0

You can now!

As of NetMRI 7.0, you can dynamically map NetMRI user roles to authentication service groups.  Thus integrating both authorization as well as authentication.


Showing results for 
Search instead for 
Did you mean: 

Recommended for You