Hi all, I am trying to play with IOS authorization using TACACS on ACS.
First i tried to do EZVPN authorization. Without configuring anything, I got the following log on failed attemps: service=ike protocol=ipsec With this information, I went to Interface Configuration, TACACS+ (Cisco IOS), New Services and configured service ike and protocol ipsec. After, configuring the attributes is easy... Then, I tried to do the same for webvpn. When I tried to connect without configuring ACS, I got the following log on failed attemps: protocol=webvpn password=cisco As you can see in the debug, there is no service set. *Jun 22 20:28:17.627: TPLUS: Service set to None ....Skipping *Jun 22 20:28:17.631: TPLUS: Sending AV protocol=webvpn *Jun 22 20:28:17.635: TPLUS: Sending AV password=cisco *Jun 22 20:28:17.635: TPLUS: Authorization request created for 0(cisco) With this, I am unable to configure the webvpn protocol to do authorization to my user... Anyone knows if this is possible and how I can do it??? I tried to configure servide as none, or leaving it blank, but none of the options worked... I have done all of it on Radius, but I am trying to do the same on TACACS...
