Cisco Systems OL-24201-01 Camera Accessories User Manual

Open as PDF

of 650

4-7

User Guide for Cisco Secure Access Control System 5.3

OL-24201-01

Chapter 4 Common Scenarios Using ACS

Password-Based Network Access

Password-Based Network Access Configuration Flow

This topic describes the end-to-end flow for password-based network access and lists the tasks that you

must perform. The information about how to configure the tasks is located in the relevant task chapters.

To configure password-based network access:

Step 1 Configure network devices and AAA clients.

a. In the Network Devices and AAA Clients, page 7-5, configure the Authentication Setting as

RADIUS.

b. Enter the Shared Secret.

See Network Devices and AAA Clients, page 7-5, for more information.

Step 2 Configure the users and identity stores. For more information, see Chapter 8, “Managing Users and

Identity Stores.”

Step 3 Define policy conditions and authorization profiles. For more information, see Chapter 9, “Managing

Policy Elements.”

Step 4 Define an access service. For more information, see Creating, Duplicating, and Editing Access Services,

page 10-12.

a. Set the Access Service Type to Network Access.

b. Select one of the ACS-supported protocols in the Allowed Protocols Page and follow the steps in

the Action column in Table 4-1.

Step 5 Add the access service to your service selection policy. For more information, see Creating, Duplicating,

and Editing Service Selection Rules, page 10-8.

Step 6 Return to the service that you created and in the Authorization Policy Page, define authorization rules.

For more information, see Configuring Access Service Policies, page 10-21.

Table 4-1 Network Access Authentication Protocols

Protocol Action

Process Host Lookup

(MAB)

In the Allowed Protocols Page, choose Process Host Lookup.

RADIUS PAP In the Allowed Protocols Page, choose Allow PAP/ASCII.

RADIUS CHAP In the Allowed Protocols Page, choose Allow CHAP.

RADIUS MSCHAPv1 In the Allowed Protocols Page, choose Allow MS-CHAPv1.

RADIUS MSCHAPv2 In the Allowed Protocols Page, choose Allow MS-CHAPv2.

EAP-MD5 In the Allowed Protocols Page, choose Allow EAP-MD5.

LEAP In the Allowed Protocols Page, choose Allow LEAP.

previous next

Top Automotive Device Types

Top Automotive Brands

Top Baby Care Device Types

Top Baby Care Brands

Top Car Audio & Video Device Types

Top Car Audio & Video Brands

Top Cellphone Device Types

Top Cellphone Brands

Top Communications Device Types

Top Communications Brands

Top Computer Device Types

Top Computer Brands

Top Fitness Device Types

Top Fitness Brands

Top Home Audio Device Types

Top Home Audio Brands

Top Household Appliance Device Types

Top Household Appliance Brands

Top Kitchen Appliance Device Types

Top Kitchen Appliance Brands

Top Laundry Appliance Device Types

Top Laundry Appliance Brands

Top Lawn & Garden Device Types

Top Lawn & Garden Brands

Top Marine Equipment Device Types

Top Marine Equipment Brands

Top Musical Instrument Device Types

Top Musical Instrument Brands

Top Outdoor Cooking Device Types

Top Outdoor Cooking Brands

Top Personal Care Device Types

Top Personal Care Brands

Top Photography Device Types

Top Photography Brands

Top Portable Media Device Types

Top Portable Media Brands

Top Power Tools Device Types

Top Power Tools Brands

Top TV and Video Device Types

Top TV and Video Brands

Top Videogame Device Types

Top Videogame Brands

Cisco Systems OL-24201-01 Camera Accessories User Manual