18-49
User
Guide

for

the

Cisco

Application

Networking

Manager

5.2
OL-26572-01
Chapter
18






Administering

the

Cisco

Application

Networking

Manager
Using
an

AAA

Server

for

Remote

User

Authentication

and

Authorization
Procedure
Step
1
From
the

Cisco

Secure

ACS

HTML

GUI,

configure

the

interface

as

follows:
a.
From
the

side

menu

bar,

click
Interface
Configuration.
The
Interface

Configuration

window

appears.
b.
From
the

Advanced

Options

pane

of

the

Interface

Configuration

window,

check

the
Per-user
TACACS+/RADIUS
Attributes

check

box

and

click

Submit.
c.
From
the

New

Services

pane

of

the
Interface
Configuration

window,

check

the
Service
and

Protocol
check
boxes

an

d

add

a

new

ser

vice

as

fo

llows:


In

the

Service

text

box,

enter

ANM.


In

the

Protocol

text

box,

enter

IP.
d.
Click
Submit.
Step
2
Do
one

of

the

following:


Configure
a

user

group

for

the

users

that

you

create—Go

to
Step
3
.


Configure
a

user

only—Skip

to
Step
4
.
Step
3
To
configure

a

user
group,
do

the
following:
a.
From
the

side

menu

bar,

click
Group
Setup.
The
Group

Setup

window

appears.
b.
From
the

Group

Setup

window,
create
a

user

group

and

set

the

following
ANM
attributes:


Check

the

ANM

IP

service

check

box.


Check

the

Custom

attributes

check

box

and

enter

the

ANM

unique

identifier

followed

by

the
role
and

domain

names

as

a

name/value

pair

(NV

Pair)

in

the

Custom

Attributes

pane

using

the
following
format:
ANM_UniqueID=
RoleName<space>Domain1<space>Domain2

.

.

.
For
example:
ANM=Role1
Domain1

Domain2

Domain6
The
ANM_UniqueID

variable

must

match

the

ANM

unique

ID

that

you

configured

in

the

ANM
organization
on

ANM

(see

the

“Adding

a

New

Organization”

section

on

page

18-10 ).

This

line
cannot
exceed

160

characters.

If

you

need

to

use

more

than

160

characters,

add

another

ANM
Unique
ID

entry

to

specify

the

domains

associated

with

the

role

specified

in

the

first

entry

(for
details,
see

the

Guidelines

and

Restrictions

associated

with

this

topics).
c.
Click
Submit.
The
user

group

i

s

now

ready

for

adding

users

(go

to

Step

4 ).
Step
4
Create
a

us

er

as

fo

llows:
a.
From
the

side

menu

bar,

click
User
Setup.
The
User

Setup

window

appears.
b.
To
assign

the

user

to

the

user

group

that

you

created

in
Step
3
,
from

the
User
Setup
window,
choose
the
group

from

the

following

drop-down

list:

Group

to

which

the

user

is

assigned.
Skip
this

step

if

the

user

is

not

to

be

included

in

a

user

group.