Cisco ACS provides lot of "control" and "management" features on Cisco
routers. Few of them ...
1> You'd define access privileges, so user could log on once and he will be
assigned to appropriate level of "enable" mode.
2> You'd have auxillary "enable" password required on per user basis.
3> You'd use Cisco ACS to confirm authorization request for each user's
command i.e. this will give you command level granuality. That is, users
could be in "enable 15" mode ... but, still " conf t" would be denied via
authorization.
4> You'd create "accounting" of every single command typed in either config
mode or EXEC mode.
HTH
GS
""Sean Young"" wrote in message
[EMAIL PROTECTED]">news:[EMAIL PROTECTED]...
> Hi Everyone,
>
> The company I am working for is considering purchasing Cisco ACS
> software. This piece of software will be running on Solaris platform.
> Currently, I am using TACACS+ (self-supported software with source code)
> on our environment running on both Solaris and linux platforms (Primary
> TACACS is on Solaris and backup is on Linux). We've modified the source
> code so that each user has his/her own privilige password so that we
> have a record of who is doing what on the network devices (accounting
> purpose). Everything is running smoothly and the company is happy with
> the result.
>
> In my opinion, learning CLI in Unix/linux is not an easy task to master.
> Because of this, I am solely responsible for the TACACS servers. Finding
> someone to train for this thing is NOT an easy thing (thanks to Microsoft
> mentality of POINT-and-CLICK attitude of new people coming into the IT
> field these days). I've tried to train several people for this task but
> it was unsuccessful. Because of this, the company is considering of
> migrating the TACACS server from Solaris/Linux over to Microsoft Windows
> platforms (YIKES) so that we can find additional support staffs.
> The software package that we consider is Cisco ACS. I have several
> questions regarding this package:
>
> 1) Is this software stable on a Windows platform? (Sorry I have to ask)
> 2) How long does it take to train a newbie to be efficient with Cisco
> ACS running on Winblows platform?
> 3) Does Cisco ACS support enable privilege for each individual user (i.e
> does each user have his/own enable password)?
>
> If anyone has done it before or have a similar experience, I would like
> to hear from you.
>
> Many thanks.
> Sean
> _________________________________________________________________
> Get your FREE download of MSN Explorer at http://explorer.msn.com
> FAQ, list archives, and subscription info:
http://www.groupstudy.com/list/cisco.html
> Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=2401&t=2245
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
