View Cart
0 Items | Total: US$0.00
Welcome,      Register

You are here

SEC0086 - ACS 5.4 TACACS Device Admin on Switch and ASA (Part 1)

Average: 5 (3 votes)
Difficulty Level: 
Lab Document: 
<Please login to see the content>

The video demonstrates TACACS+ configuration for Device Admin on Cisco ACS 5.4. We will go through the entire process of adding network devices, users, and building authentication and authorization policies. We will also look at basic AAA configuration on a Cisco switch and ASA firewall. We will use both local and AD users for testing and granting shell privilege 15 in this lab.

Part 1 of this video focuses on configurations on the ACS server.


  • Network Device and Network Device Group
  • Identity Group and User
  • Policy Element
    • Shell Profile
  • Service Selection Rules
  • Access Service
    • Authentication Policy
    • Authorization Policy
  • Switch and ASA AAA Configuration

About Author

Metha Cheiwanichakorn, CCIE#23585 (RS, Sec, SP), is a Cisco networking enthusiast with years of experience in the industry. He is currently working as a consulting engineer for a Cisco partner. As a founder of and an instructor at, Metha enjoys learning and challenges himself with new Cisco technologies.


Where did you define the "ACS1" server group? In which video? When I try, I get the error "%AAAA-4-SERVUNDEF: The server-group " " is not defined. Please define it."

The aaa server group "ACS1"  is defined at the begining of part 2 of this lab video which is SEC0087.

Lab Minutes Classifieds