Help with using TACACS to control guest http access

Discussion in 'Cisco' started by dross, Nov 11, 2005.

  1. dross

    dross Guest

    Hi, I would like to use my TACACS server to control guest access to the
    internet. So far I have created a Windows group in AD. I have added a
    test user to that group. In TACACS I have used group mappings to map
    to this group. From here, I am a bit unsure of how to proceed. My
    ideal situation would be that each time a guest connects to one of our
    network drops, they are allowed to access the internet, only after
    being prompted and entering the correct usernamre and password, which
    will be supplied to them as a guest.


    Thanks
     
    dross, Nov 11, 2005
    #1
    1. Advertisements

  2. dross

    Vivek Guest

    On a pix you can have cut-through proxy. "aaa authentication include http
    ...."

    on a router you can use virtual http and have the authentication on virtual
    http via TACACS+. In this case you will have to configure a downloadable acl
    to limit traffic to internet.
     
    Vivek, Nov 14, 2005
    #2
    1. Advertisements

Ask a Question

Want to reply to this thread or ask your own question?

You'll need to choose a username for the site, which only take a couple of moments (here). After that, you can post your question and our members will help you out.