You will need to configure each NAS in the ACS. I am using ACS 2.3(6) for Unix and it handles TACACS+ authentication for my SSH connections to my routers. Try setting up your NAS in the ACS and see if that helps. If not, post the NAS config.
John Kaberna CCIE #7146 NETCG Inc. Cisco Premier Partner www.netcginc.com (415) 750-3800 __________________ CCIE Security Training www.netcginc.com/training.htm ""Dennis Bailey"" wrote in message [EMAIL PROTECTED]">news:[EMAIL PROTECTED]... > I am wondering if anyone has been able to use CiscoSecure ACS for controling > access to router console and vty lines. I am currently running ACS 2.5 and > am using it for authentication of dialup and vpn remote access users. I > have been trying to figure out how to use it to control access to my routers > but seem to get to a point where authentication fails and the message in the > failed attemps log is "unknown NAS" > > Is it necessary to define every device in cisco secure for this to work? I > know I must be missing something simple, I can get it to work fine when I > configure it for terminal access on one of my remote access routers (which > are defined as NAS in cisco secure) but nothing else. > > Any ideas, links, examples, abuse....whatever you feel is appropriate :-) > > Thanks, > Dennis Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=21960&t=21960 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
