Forum Discussion

Cirrus

Aug 17, 2015

Configure Radius/TACACS+ with Cisco ACS v 5.7

Hi, can any body please direct me how to configure a Radius or TACACS+ Admin authentication on F5 LC V 11.6 with Cisco ACS v5.7. I'm trying to do the Radius, but it didn't work, and i cannot see...

application delivery

BIG-IP Access Policy Manager (APM)

Cirrus

Aug 18, 2015

I can't tell you how to do the configuration in Cisco ACS because we use Aruba Clearpass instead, Based on what you posted it sounds like the BigIP is configured properly, but here are some things to check on the BigIP.

1: Do you have a route to get from the BigIP to the ACS server?

2: Do a packet capture on the BigIP. If you capture the data to a file, you can view it in WireShark. If you configure Wireshark with your secret key you can see the decrypted packets. Then you can verify that the F5-LTM-User-Info-1=adm attribute is being sent properly.

3: If you enable TACACS+ in the BigIP you still should be able to log in via the local admin account.

Hope this helps.

Robert

Help guide the future of your DevCentral Community!

What tools do you use to collaborate? (1min - anonymous)