Cisco Systems Servers Benutzerhandbuch

Cisco Secure ACS grants authorization based on the Cisco Secure ACS group to 
which the user is assigned. While the group to which a user is assigned can be 
determined by information from the ODBC database using a process known as 
“group specification”, it is Cisco Secure ACS that grants authorization privileges.

Cisco Secure ACS passes the user information to the relational database via the 
ODBC connection. The relational database must have a stored procedure that 
queries the appropriate tables and returns values to Cisco Secure ACS. If the 
returned values indicate that the username and password provided are valid, 
Cisco Secure ACS grants the user access. Otherwise, Cisco Secure ACS denies 
the user access. See 

Authenticating users with an ODBC-compliant relational database requires that 
you complete several significant steps external to Cisco Secure ACS before 
configuring Cisco Secure ACS with an ODBC external user database.

CiscoSecure

ACS

RDBMS

ODBC

"Unknown

user"

interface

Name, pap password

Chap/Arap password,

authen result,

acct info

Pap authentication

(MS) Chap/Arap Extraction

16752