[c-nsp] TACACS+ and PIX
Marty Adkins
adkins at netcraftsmen.net
Sat Dec 18 00:27:02 EST 2004
Brian Feeny wrote:
>
> I did read about that.
>
> But regardless, would be nice if I could figure out how to do AAA enable
> auth for the pix to a TACACS+ server, anyone know how to do this?
>
This is working fine for me to a FWSM (module in a Cat6500) running code
which is essentially PIX 6.0. The auth server is Cisco ACS 3.1.x
aaa-server TACACS+ protocol tacacs+
aaa-server TACACS+ (outside) host xxx.xxx.xxx.xxx <key> timeout 3
aaa-server RADIUS protocol radius
aaa-server LOCAL protocol local
aaa authentication telnet console TACACS+
aaa authentication ssh console TACACS+
aaa authentication enable console TACACS+
aaa authentication http console TACACS+
- Marty
More information about the cisco-nsp
mailing list