Chapter4 Se tting Up and Managing Network Configuration
AAA Server Configuration
4-16
Cisco Secure ACS 3.0 for Windows 2000/NT Servers User Guide
78-13751-01, Version 3.0
Adding and Configuring a AAA ServerTo add and configure a AAA server, follow these steps:
Step 1 In the navigation bar, click Network Configuration.
Result: The Network Configuration section opens.
Step 2 Do one of the following:
a. If you are using NDGs, click the name of the NDG to which the AAA server
is to be assigned. Then, click Add Entry below the [name] AAA Servers
table.
b. To add a AAA server when you have not enabled NDGs, below the AAA
Servers table, click Add Entry.
Result: The Add AAA Server page appears.
Step 3 If this is a new AAA Server, in the AAA Server Name box, type a name for the
remote AAA server.
Step 4 In the AAA Server IP Address box, type the IP address assigned to the remote
AAA server.
Step 5 In the Key box, type the shared secret that the remote AAA server and the
Cisco Secure ACS use to encrypt the data.
Note The key is case sensitive. If the keys between the two AAA servers are
not identical when authentication is forwarded, the request is
incorrectly encrypted and authentication fails.
Step 6 From the Network Device Group list, select the NDG to which this AAA Server
belongs.
Note To enable NDGs, click Interface Configuration, click Advanced
Options, and then click Network Device Groups.
Step 7 To enable Watchdog packets, select the Log Update/Watchdog Packets from
this remote AAA Server check box. Watchdog packets are interim packets sent
periodically during a session. They serve to enable an approximation of session
length in the event that no stop packet is received to mark the end of the session.