https://community.cisco.com/t5/network-access-control/acs-5-3-for-network-access-control/m-p/2184222#M133839 <HTML><HEAD></HEAD><BODY><P>Salam Mohammed,</P><P></P><P>Yes. You can use the ACS to authenticate wired users using 802.1x (port-based authenitcation) IF your AAA device (the switch) supports such configuratoin.</P><P>You need to know that for admin control access you use TACACS+ protocol. With network access (wired or wireless) you need to use RADIUS protocol.</P><P>What you&nbsp; need to do is:</P><P></P><P>- Configure the switch to use the ACS as a RADIUS server.</P><P>- configure the switch ports to which clients will connect to use 802.1x. Let the 802.1x auth go to the RADIUS server configured in the previous step.</P><P>- Add the switches to the ACS as AAA devices.</P><P>- configure the ACS correclty (policies, AD integratoin, EAP types...etc) so that it responds to the switch when it asks it for users credentials valid or not. Note that you need to configure the radius part.</P><P></P><P>HTH</P><P></P><P>HTH</P><P></P><P>Amjad</P><P></P><P><SPAN style="color: blue;">Rating useful replies is more useful than saying <SPAN style="color: green;"> "<SPAN style="text-decoration: underline;">Thank you</SPAN>"</SPAN></SPAN></P></BODY></HTML> Sun, 17 Feb 2013 15:13:03 GMT Amjad Abdullah 2013-02-17T15:13:03Z https://community.cisco.com/t5/network-access-control/acs-5-3-for-network-access-control/m-p/2184221#M133820 <P>Hi Everyone,</P><P></P><P>We recently deployed ACS 5.3 on a VM, while the main purpose of implementation was to control access (authentication/authorization) on network devices; Can we use the same user to authenticate users' access to our wired network? So only users with a valid credentials on our Windows AD can have access to the network? If not, what component do we miss to implement this feature?</P> Mon, 11 Mar 2019 03:05:59 GMT https://community.cisco.com/t5/network-access-control/acs-5-3-for-network-access-control/m-p/2184221#M133820 mnasseronseu 2019-03-11T03:05:59Z https://community.cisco.com/t5/network-access-control/acs-5-3-for-network-access-control/m-p/2184222#M133839 <HTML><HEAD></HEAD><BODY><P>Salam Mohammed,</P><P></P><P>Yes. You can use the ACS to authenticate wired users using 802.1x (port-based authenitcation) IF your AAA device (the switch) supports such configuratoin.</P><P>You need to know that for admin control access you use TACACS+ protocol. With network access (wired or wireless) you need to use RADIUS protocol.</P><P>What you&nbsp; need to do is:</P><P></P><P>- Configure the switch to use the ACS as a RADIUS server.</P><P>- configure the switch ports to which clients will connect to use 802.1x. Let the 802.1x auth go to the RADIUS server configured in the previous step.</P><P>- Add the switches to the ACS as AAA devices.</P><P>- configure the ACS correclty (policies, AD integratoin, EAP types...etc) so that it responds to the switch when it asks it for users credentials valid or not. Note that you need to configure the radius part.</P><P></P><P>HTH</P><P></P><P>HTH</P><P></P><P>Amjad</P><P></P><P><SPAN style="color: blue;">Rating useful replies is more useful than saying <SPAN style="color: green;"> "<SPAN style="text-decoration: underline;">Thank you</SPAN>"</SPAN></SPAN></P></BODY></HTML> Sun, 17 Feb 2013 15:13:03 GMT https://community.cisco.com/t5/network-access-control/acs-5-3-for-network-access-control/m-p/2184222#M133839 Amjad Abdullah 2013-02-17T15:13:03Z