Network Access Control

I'm having trouble understanding AAA processing logic. I just followed this guide to set up differentiated user level authentication profiles via TACACS+ on ACS version 5.6:http://www.security-solutions.co.za/Cisco-ACS-5.2-Role-Based-Authentication-A...

Hello all,I upgrade one 3750x from version 12.2 55 to 15.0(2)SE7 and i see that some configuration must be changed Warning: The CLI will be deprecated soon 'radius-server host xxxxxxxx auth-port 1645 acct-port 1646 test username name key 7 sharedsecr...

Hi AllI'm trying to cleanup some unused authorization compound conditions  (Policy>Policy Elements>Conditions>Authorization>Compound Conditions ==>Delete)In fails with the error message      The condition "Test_Condition" is in use by other entities....

Hi,I have a problem. Missing passwords or hash when I export the Internal User into CSV. In Template of CSV is columb "password:String(32):Required". But this columbs are empty in export file. Import CSV fails. The problem is missing "password:String...

I use cisco ISE 1.4 and self-registered user portal.All it's ok and an external user can register itself and login.But the user session remain active also if I turn off the device.Every active device use one license and if it's always active I have a...

We have tried a few android devices with version 4.2+ but still got the error message ‘Unable to download profile.(Have you logged into the guest portal?)’ as shown at the bottom picture.In fact, we are connecting the devices to an open SSID which pe...

Hi Admin!! I have creat on my catalyst switch 2960 two local user account with full privilege access (they can do everything). and thats working properlyEx: username john privilege 15 password xxxxxxx.. ok     username boot privilege 15 password xxxx...

Hi guys,  I have a strange situation at a customer with a common guest internet access using a cisco ISE and a cisco Wireless network.  The ISE is a physical 3415 using wireless-only licenses and is on the software release 1.4.0.253. The WLC is a 550...

Hi, I have configured the ACS 5.5 following a number of documents, the last one being a support forum doc, "How to Configure tacacs Authentication and Authorization for Admin and non-Admin users in ACS 5.1", yet each time when I login to the Cisco de...

I have a customer who wants to allow their users to RDP to their workstations over VPN.  If the user is logged in to the office workstation and fully authenticatied to ISE there isn't a problem.  However if they need to reboot the workstation they ca...

Hi, I am having problem viewing the contents of our patch repository on an sftp server. I will need to install a cumulative patch from the remote sftp repository at some point. I patched using the same sftp repository folder back in June and had to r...

Hi AllI would like to deploy a Radius server using cisco access Registrar 5.1, and I'm wondering does anybody have an experience using the CAR to import database on CSV format from billing system and then do the logic afterward ? (lets say, after imp...

Looks like the Bug CSCum28910 - Runtime fails due to an empty AD Group is back !Just update some of or ACS platforms - 2 updated no problem but the 3rd refused to start.When issuing the "show application status acs" command the Runtime process was in...