18-40
User
Guide

for

the

Cisco

Application

Networking

Manager

5.2
OL-26572-01
Chapter
18






Administering

the

Cisco

Application

Networking

Manager
Using
an

AAA

Server

for

Remote

User

Authentication

and

Authorization
Ta
b

l

e


18-11
Authenticating
ANM

Users

with

a

TACACS+

Server
Ta
s

k
Procedure
Step
1
Create
an

organization

and
define
the

remote

TACACS+
server
used
(ANM)
Note
Your
user

rol

e
determines
whether
you
can

use

this

opt

ion.
Remote
authentication

servers

are

defined

in

ANM

as

organizations.

A

single
server
can

be

used

in

multiple

organizations.

To

configure

authentication

for


your
users

by

creating

an

organization

and

defining

TACACS+

as

the

method

of
authentication,
do

the

following:
a.
Choose
Admin
>

Role-Based

Access

Control

>

All

Organizations.

Th

e
Organizations
window

appears.
b.
Click
Add.
c.
Enter
the

name

of

t

he

new

organization

and

notes

if
required.
d.
Click
Save.
e.
Choose
the

new

organization

and

click
Edit.
f.
Enter
the

attributes

as

described

in
Ta
b

l

e
18-2
.

Certain

attributes

appear
when
you

choose

specific

options.

Include

the

following

organization
attributes
to

authenticate

ANM

users

with

a

TACACS+

server:


Organization

name


TACACS+

as

authentication

method


IP

address

of

TACACS+

server


Authentication

port

number


Authentication

secret
g.
Click
Save.
See
the

“Adding

a

New

Organization”

section

on

pa

ge

18-10

for

details

about
this
procedure.
Step
2
Creating
a
role

for

RBAC
(ANM)
Note
Your
user

rol

e
determines
whether
you
can

use

this

opt

ion.
You
can

edit

the

predefined

roles

or

you

can

create

user-defined

roles.

When

you
create
a

role,

you

specify

a

name

and

description

of

the

new

role,

and

then
choose
the

privileges

for

each

task.

You

can

also

assign

this

role

to

one

or

more
users.
Do
the

following:
a.
Choose
Admin
>

Role-Based

Access

Control

>

Organization

>

Roles.
The
Roles

table

ap

pears.
b.
Click
Add.
The

New

Role

for

m

ap

pears.
c.
Enter
the

attributes

as

described

in
Ta
b

l

e
18-9
.
d.
Click
Save.
The

new

role

is

added

to

the
list
of

user

roles.
See
the

“Creating

User

Roles”

section

on

pa

ge

18-29

for

details

on

this
procedure.