downloadable ACL from ACS possible in ASA cut-through proxy using TACACS+?

Hello guys,

I have a doubt... a have made many testings on router Autentication Proxy feature and can authorize per user downloadable ACL or av-pairs to accomplish this using radius. I have accomplished the same result using tacacs+ using the "auth-proxy" attribute in the ACS.

The ASA cut through proxy works fine with Radius, i mean the downloadable ACL ( or the av-pair lines) works fine when using Radius and per-user override , however i cant make the ASA download an ACL from the ACS using tacacs+. I suppose its not supported since its different the way it works in ASA , just want to doublecheck.

Thanks!

Emilio

Sign In or Register to comment.