APC Radius authentication with Cisco ISE

In: Cisco, ISE

In this blog, I will show you how to use Cisco ISE to authenticate users into APC Network-enabled devices such as PDU or UPS using Radius.

Radius Vendor-Specific Attributes (VSA)

There are various dictionaries created for different vendors and attributes can be added to each of these dictionaries. Each attribute, in general, defines the different roles of device administration a user could get when they log in to the network device. This eliminates the need to configure and define local accounts on the devices.

Step 1 - Import the APC dictionary

I'm going to import the APC vendor dictionary into ISE. I obtained the dictionary from the APC website which is referenced at the bottom of this blog. Save the following contents into a file called apc-dict.APC



ATTRIBUTE APC-Service-Type 1 integer APC

VALUE APC-Service-Type Admin 1
VALUE APC-Service-Type Device 2
VALUE APC-Service-Type ReadOnly 3

Step 2 - Configure authorization profiles

I'm going to create two authorization profiles - one with read-only access and another one with admin access.

Step 3 - Configure authorization policies

Configure authorization policies and reference the profiles we just created. I've created a simple policy where the IT-support  gets read-only access and Network-Admins get full admin access.


How do I configure my RADIUS server to authenticate my APC Network Enabled device? - APC USA
Issue RADIUS set up with APC Network Management Card enabled products. Product Line Network Management Card 1 (NMC1) - AP9617, AP9618, AP9619 Devices with an embedded 1…
Use RADIUS for Device Administration with ISE
This document provides a compilation of attributes that various Cisco and non-Cisco products expect to receive from an AAA server.

Thank you for reading. As always your comments and feedbacks are always welcome

Written by
Suresh Vina
Tech enthusiast sharing Networking, Cloud & Automation insights. Join me in a welcoming space to learn & grow with simplicity and practicality.
More from Packetswitch
Table of Contents
Great! You’ve successfully signed up.
Welcome back! You've successfully signed in.
You've successfully subscribed to Packetswitch.
Your link has expired.
Success! Check your email for magic link to sign-in.
Success! Your billing info has been updated.
Your billing was not updated.