Symantec Privileged Access Management

Hi Team,

I am lookin at "How to Configure RADIUS or TACACS+ for Authentication">> "Pre-requiste" docops for PAM 3.3. A note in the document says below
"Note: When configuring device access to Cisco, you cannot configure a unique enabled password for each Cisco device user with TACACS."

Does it mean access to all cisco devices can only have one password?


I am working with a customer for onboarding the CISCO devices into PAM and this statement confused me. Anyone, who can help me with this.

Thank you,
Bibhu

Hello Bidhu,
Some Cisco devices have a kind of authentication over command line, something called EXEC to enter enable mode which is basically a username-less login (you just use a password, with no username). You can see a small explanation here

Best regards,
Bruno
Original Message:
Sent: 06-27-2019 06:17 AM
From: Bibhu Sahoo
Subject: Cisco ACS TACACS+ authentication

Hi Team,

I am lookin at "How to Configure RADIUS or TACACS+ for Authentication">> "Pre-requiste" docops for PAM 3.3. A note in the document says below
"Note: When configuring device access to Cisco, you cannot configure a unique enabled password for each Cisco device user with TACACS."

Does it mean access to all cisco devices can only have one password?


I am working with a customer for onboarding the CISCO devices into PAM and this statement confused me. Anyone, who can help me with this.

Thank you,
Bibhu

Thank you Bruno for the insight.

Regards,
Bibhu
Original Message:
Sent: 06-27-2019 12:23 PM
From: Bruno Reis
Subject: Cisco ACS TACACS+ authentication

Hello Bidhu,
Some Cisco devices have a kind of authentication over command line, something called EXEC to enter enable mode which is basically a username-less login (you just use a password, with no username). You can see a small explanation here

Best regards,
Bruno
Original Message:
Sent: 06-27-2019 06:17 AM
From: Bibhu Sahoo
Subject: Cisco ACS TACACS+ authentication

Hi Team,

I am lookin at "How to Configure RADIUS or TACACS+ for Authentication">> "Pre-requiste" docops for PAM 3.3. A note in the document says below
"Note: When configuring device access to Cisco, you cannot configure a unique enabled password for each Cisco device user with TACACS."

Does it mean access to all cisco devices can only have one password?


I am working with a customer for onboarding the CISCO devices into PAM and this statement confused me. Anyone, who can help me with this.

Thank you,
Bibhu