Cisco Systems 3.3 Manual De Usuario
16-15
User Guide for Cisco Secure ACS for Windows Server
78-16592-01
Chapter 16 User Group Mapping and Specification
RADIUS-Based Group Specification
To enable per-user group mapping, configure the external user database to return
authentication responses that contain the Cisco IOS/PIX RADIUS attribute 1,
[009\001] cisco-av-pair with the following value:
authentication responses that contain the Cisco IOS/PIX RADIUS attribute 1,
[009\001] cisco-av-pair with the following value:
ACS:CiscoSecure-Group-Id =
N
where N is the Cisco Secure ACS group number (0 through 499) to which
Cisco Secure ACS should assign the user. For example, if the LEAP Proxy
RADIUS Server authenticated a user and included the following value for the
Cisco IOS/PIX RADIUS attribute 1, [009\001] cisco-av-pair:
Cisco Secure ACS should assign the user. For example, if the LEAP Proxy
RADIUS Server authenticated a user and included the following value for the
Cisco IOS/PIX RADIUS attribute 1, [009\001] cisco-av-pair:
ACS:CiscoSecure-Group-Id = 37
Cisco Secure ACS assigns the user to group 37 and applies authorization
associated with group 37.
associated with group 37.