Network Access Control

     Hi all. in cisco's documentation, I found somthing about split acs deployment where both acs boxes can act as primary in their zones and then secondary for the other zone respectively, but I don't seem to understand how this can be done on the t...

Hi team,I am looking for some help, my customer has to ACS for AAA of infrastructure devices, primary and backup, with database replication; also they have two ISE appliances: the first one, as monitoring role and the second one, as administration an...

Cisco ISE 1.3. Problem: Some workstations are not doing posture, after observation noticed that the switches are to redirect to the ISE standalone (Secondary), but the primary be active. At this time turn off the secundary to return to normal operati...

Hi I am trying to configure my Cisco ACS 5.4 via TACACS for Nexus 7000 (NXOS 6.2(2)).  Following this documentationhttp://www.cisco.com/c/en/us/support/docs/security/secure-access-control-system/115925-nexus-integration-acs-00.htmlBut when logging in...

I am using the CISCO ISE REST API and I want to be able to get the client IP address. I have been reading the Monitoring REST API documentation here: http://www.cisco.com/c/en/us/td/docs/security/ise/1-2/api_ref_guide/api_ref_book/ise_api_ref_ch1.htm...

Hello,I am a newbie in ACS 5.1 and UAC.I configured a MAB Access Service, but I get the error in the Radius Monitorring: 15024: PAP is not allowed.However, I nowhere configured PAP. Any idea what I do wrong ?I did not configure any protocolls, just '...

I have a pair of Pulse Secure MAG2600s that serve as my remote access (VPN) into my data center. I'm running my primary authentication for VPN access against OCSP checks and extracting the values of the CN and OU fields of the CERT to determine what ...

The IRS requires all systems that process sensitive personal information, such as social security numbers, to have the passwords protected with many things, one of them being a minimum password age of 1 day being set on all password.  I cannot find h...

Hi AllWe are attempting to configure a RADIUS server with a Cisco 2500 Series Wireless Controller (AIR-CT2504-K9). Below you can see the configuration of the RADIUS sever on the controller, with the correct IP: Below is the configuration we have for...

Hi all, as far as you know, it could be possible to have two factor authentication in acs 5.x? What i want to achieve is: 1) if a VPN user try joint the network, a user lookup needs to be performed against a specific Group in AD, but the password ne...

I have an LDAP server, no radius server.Users need to authenticate when connecting to wireless (Cisco WLC 2504 and AP1702i).Can I have a single sign-on setup with the above devices or do I need a radius server ?