on Jan 25, 2019This section contains instructions on how to integrate Cisco FTD with RSA Authentication Manager using RADIUS.
Architecture Diagram
RSA Authentication Manager
To configure your RSA Authentication Manager for use with a RADIUS Agent, you must configure a RADIUS client and a corresponding agent host record in the Authentication Manager Security Console.
The relationship of agent host record to RADIUS client in the Authentication Manager can 1 to 1, 1 to many or 1 to all (global).
RSA Authentication Manager listens on ports UDP 1645 and UDP 1812.
Cisco FTD
Follow the steps in this section to configure Cisco FTD as a RADIUS client to RSA Authentication Manager.
Procedure
1. Logon to Cisco Firepower Management Center and browse to Objects > Object Management > RADIUS Server Group and click Add RADIUS Server Group.
2. Enter a Name for the server group and click + to add a RADIUS server.
3. Configure the RADIUS server settings and click Save.
- IP Address/Hostname - Enter the hostname or IP address of your RSA Authentication Manager server.
- Authentication Port - Enter either 1645 or 1812.
- Key - Enter the RADIUS shared secret to match as entered in the RADIUS client in RSA Authentication Manager Security Console.
4. (Optional) click + to add RADIUS servers for any RSA Authentication Manager replica servers.
5. Click to Save the RADIUS Server Group.
Next Step: Proceed to the Use Case Configuration Summary section for information on how to apply the RADIUS configuration to your use case.