| Author |
How to stop multiple logins from single user in NAS
|
|
| haseeb_eng 2002-12-16, 8:35 am |
| In 3640 same users are login twice . I think so i have to implement radius with ACS . Anybody is having any suggestions ? | |
| mkhan 2002-12-16, 10:09 am |
| Use TACAS+ with ACS
--------------------
it can be configured thru your router and pix.
if you need configuration sample letme know.
Cheers | |
|
|
|
| Can you post the sample here?
Thanks | |
| mkhan 2002-12-21, 11:41 pm |
| aaa new-model
aaa authentication login default local group tacacs+
aaa authentication ppp default if-needed group tacacs+
aaa authorization network default group tacacs+
tacacs-server host 10.1.1.1
tacacs-server key skey
.......
Install ACS i don't know what version you have, I made it on ACS 2.6 but concept is same ACS is really straight forward installation there is a good help with ACS software for any task.
http://www.cisco.com/en/US/products...008007c869.html
Cheers. | |
| MadChef 2002-12-22, 6:07 am |
| quote:
Originally posted by haseeb_eng
In 3640 same users are login twice . I think so i have to implement radius with ACS . Anybody is having any suggestions ?
Set the max-sessions on the ACS box to 1. This can be done on a user or group level configuration.
TACACS vs. Radius is the one place I tend to deviate from the standard because I prefer to use the tacacs protocol rather than radius, if only because it encrypts the entire packet payload instead of just the password like radius.
MadChef | |
|
| TACACS+ Supports accounting too if you wanna track all commands issues on a certain device by users. | |
| haseeb_eng 2002-12-28, 1:16 am |
| Well guys someone else went to that site and he fixed with out installing radius and tacacs(ACS) i.e he had done it from the router itself . How he fixed ? That i don't know . What do you guys think ? |
|
|
|