Cisco Secure ACS is an essential component of the Cisco IBNS solutionan architecture built upon the 802.1X IEEE standard. As a centralized authentication server, Cisco Secure ACS brings RADIUS-based AAA capabilities inside the LAN (both wired and wireless) when traditionally access control was managed at the edge of the network. In particular, IBNS in conjunction with Cisco Secure ACS provides the following benefits:
Strong authentication using public key infrastructure (PKI), token, and smartcard. This is particularly important in wireless LAN environments where vulnerability to rogue security attacks is fairly high if strong and mutual authentication methods are not used.
Flexible policy assignments (such as per user quotas and virtual LAN (VLAN) assignments)
User accounting and auditing and ability to track and monitor user behavior inside the LAN
IBNS ties identified entities (both user- and device-based) with policies that are centrally created and administered by Cisco Secure ACS, providing superior granularity of control and flexibility.
http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_qanda_item09186a0080124e7c.shtml