Cisco Secure Access Control System (ACS) ties together an enterprise's network access policy and identity strategy. Cisco Secure ACS 5 is a policy platform providing RADIUS and TACACS+ services. It supports the increasingly complex policies needed to meet today's new demands for access control management and compliance. Cisco Secure ACS provides central management of access policies for device administration and wireless and wired 802.1x network access scenarios.
Cisco Secure ACS provides the policy control for the Cisco Self Defending Network architecture, an architecture that protects your business by identifying, preventing, and adapting to threats from inside and outside the company. Cisco Secure ACS is a highly scalable, high-performance access policy system that centralizes device administration, authentication, and user access policy and reduces the management and support burden for these functions.
The Cisco Secure ACS 5 rules-based policy model supports the application of different authorization rules under different conditions, and thus policy is contextual and not limited to authorization determined by a single group membership. Integration capabilities allow information in external databases to be directly referenced in access policy rules, and attributes can be used both in policy conditions and authorization rules.
Cisco Secure ACS 5 features centralized collection and reporting for activity and system health information for full manageability of distributed deployments. It supports proactive operations such as monitoring and diagnostics, and reactive operations such as reporting and troubleshooting. Advanced features include a deployment-wide session monitor, threshold-based notifications, entitlement reports, and diagnostic tools.
Complete access control and confidentiality solution
It can be deployed with other Cisco TrustSec components - including policy components, infrastructure enforcement components, endpoint components, and professional services - for a comprehensive access control and confidentiality solution.
Cisco Secure ACS 5 supports two distinct protocols for authentication, authorization, and accounting (AAA). Cisco Secure ACS 5 supports RADIUS for network access control and TACACS+ for network device access control. Cisco Secure ACS is a single system for enforcing access policy across the network.
Cisco Secure ACS 5 supports a rules-based, attribute-driven policy model that provides greatly increased power and flexibility for access control policies that may include authentication protocol requirements, device restrictions, time of day restrictions, posture validation, and other access requirements. Cisco Secure ACS may apply downloadable access control lists (dACLs), VLAN assignments, and other authorization parameters.
Cisco Secure ACS 5 supports a completely redesigned lightweight, web-based GUI that is easy to use. An efficient, incremental replication scheme quickly propagates changes from primary to secondary systems providing centralized control over distributed deployments.
Monitoring and troubleshootingProduct Highlights
Cisco Secure ACS 5 includes an integrated monitoring, reporting, and troubleshooting component that is accessible through the web-based GUI. This tool provides maximum visibility into configured policies and authentication and authorization activities across the network.
- Addresses complex policy needs in a flexible manner
- A lightweight, web-based graphical user interface (GUI)
- Integrated advanced monitoring, reporting, and troubleshooting capabilities
- Improved integration with external identity and policy databases
- AAA protocols and access policies