Posted on July 6, 2016 5:11 pm
 |  Asked by Andrew Ferguson
 |  1286 views
RESOLVED
0
0
Print Friendly, PDF & Email

Hi,

We have got CVP 2016.1.1 talking to Cisco TACACS+ with Authentication Tacacs Authorization Local and the “test” button works fine. We get to log in, but as a User (not admin).   What tweaks do we need to make to uplift the users to Admin?

With Authentication Tacacs Authorization Tacas CVP gives a RuntimeException.

Thanks

Andrew

 

0
Posted by Julien Julien
Answered on July 23, 2016 7:22 am

you need to configure the cvp-roles optional attributes in your TACACS server. Just did it today!

Can someone actually post the procedure to configure cvp-roles attribute on Cisco ACS. I am running ACS 5.6 and have been looking for a specific option to configure for the CVP-roles attribute.

(Atrey at July 27, 2016 10:25 pm)
0
Posted by Dennis Neckermann
Answered on January 8, 2019 7:47 am

Here is a paste of my Answer to use CVP with Tacacs from Aruba Clearpass:

https://community.arubanetworks.com/t5/Security/Clearpass-with-Arista-CVP/td-p/498808

Regards DN

FYI, when you set the Authorization Attribute Status in the Enforcement Profile , both ADD (PASS_ADD) and REPLACE (PASS_REPL) methods work starting from 2018.2.2 (was released this week). For versions 2018.2.0 and 2018.2.1 a patch can be provided.
Thanks
Tamas

(Tamas Plugor at January 9, 2019 10:23 pm)

Post your Answer

You must be logged in to post an answer.