Chapter 2 Deployment Considerations
Basic Deployment Requirements for Cisco Secure ACS
2-4
User Guide for Cisco Secure ACS for Windows Server
78-16592-01
Other than the software products described in the Release Notes, we have not
tested the interoperability of Cisco Secure ACS and other software products on
the same computer. We only support interoperability issues of software products
that are mentioned in the Release Notes. The most recent version of the Release
Notes are posted on Cisco.com, accessible from the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/
index.htm
Network and Port Requirements
Your network should meet the following requirements before you begin deploying
Cisco Secure ACS.
• For full TACACS+ and RADIUS support on Cisco IOS devices, AAA clients
must run Cisco IOS Release 11.2 or later.
• Non-Cisco IOS AAA clients must be configured with TACACS+ and/or
RADIUS.
• Dialin, VPN, or wireless clients must be able to connect to the applicable
AAA clients.
• The computer running Cisco Secure ACS must be able to ping all AAA
clients.
• Gateway devices between Cisco Secure ACS and other network devices must
permit communication over the ports needed to support the applicable feature
or protocol. For information about ports that Cisco Secure ACS listens to, see
Table 2-1.
• A supported web browser must be installed on the computer running
Cisco Secure ACS. For the most recent information about tested browsers,
see the Release Notes. The most recent version of the Release Notes are
posted on Cisco.com, accessible from the following URL:
http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/
index.htm
• All network cards in the computer running Cisco Secure ACS must be
enabled. If there is a disabled network card on the computer running
Cisco Secure ACS, installing Cisco Secure ACS may proceed slowly due to
delays caused by Microsoft CryptoAPI.