beautypg.com

Cisco 3.3 User Manual

Page 131

background image

4-15

User Guide for Cisco Secure ACS for Windows Server

78-16592-01

Chapter 4 Network Configuration

AAA Client Configuration

attributes. If the AAA client represents a Cisco Aironet Access Point
used only by users authenticating with PEAP or EAP-TLS, this is also the
protocol to select.

RADIUS (Ascend)—RADIUS using Ascend RADIUS VSAs. Select this
option if the network device is an Ascend network device supporting
authentication via RADIUS.

RADIUS (Juniper)—RADIUS using Juniper RADIUS VSAs. Select
this option if the network device is a Juniper network device supporting
authentication via RADIUS.

RADIUS (Nortel)—RADIUS using Nortel RADIUS VSAs. Select this
option if the network device is a Nortel network device supporting
authentication via RADIUS.

RADIUS (iPass)—RADIUS for AAA clients using iPass RADIUS.
Select this option if the network device is an iPass network device
supporting authentication via RADIUS. iPass RADIUS is identical to
IETF RADIUS.

Single Connect TACACS+ AAA Client (Record stop in accounting on
failure)
—If you select TACACS+ (Cisco IOS) from the Authenticate Using
list, you can use this option to specify that Cisco Secure ACS use a single
TCP connection for all TACACS+ communication with the AAA client,
rather than a new one for every TACACS+ request. In single connection
mode, multiple requests from a network device are multiplexed over a single
TCP session. By default, this check box is not selected.

Note

If TCP connections between Cisco Secure ACS and the AAA client
are unreliable, do not use this feature.

Log Update/Watchdog Packets from this AAA Client—Enables logging of
update, or watchdog, packets. Watchdog packets are interim packets sent
periodically during a session. They provide you with an approximate session
length if a AAA client fails and, therefore, no stop packet is received to mark
the end of the session. By default, this check box is not selected.

Log RADIUS Tunneling Packets from this AAA Client—Enables logging
of RADIUS tunneling accounting packets. Packets are recorded in the
RADIUS Accounting reports of Reports and Activity. By default, this check
ox is not selected.