Network Access Control

HelloThe Byod procedure fails when launching "Network setup assistant"Error message  is: "This profile could not be downloaded, are-you connected to Guest Portal ?" WLC 5508  (VM) 7.5Wlan : FlexconnectConfig : AP FlexconnectISE 1.3Android 4.1.2Here a...

We are running ISE 1.3 tied to AD with WLC 7.6.130.0.  Our ISE has a GoDaddy (none wildcard) certificate loaded for https and EAP.  We are just running PEAP.  We have a mix of IOS, Android, and Windows 7/8 devices.  IOS and Android devices can self c...

Hi, all! Is it possible to make downloadable ACL works with Cisco IOS L2TP/PPTP server and Cisco Secure ACS 5.6? I'm getting attribute according to ppp negotiation, but nothing happens:000563: *Feb  9 13:50:34.676 MSK: ALLOC-FREE: AAA/ATTR(0000000F):...

Hi all,we have a VMWare 5.4 ACS server and we are trying to add a second interface. We added it logicaly, but server is not accessible through ssh or https in this second interface. I read in forum that physical appliance has several physical interfa...

Hello.I want to try to install ACS server for windows to check how this is working with Microsoft AD. Does anyone know where i can download an evaluation version of Cisco ACS Server for Windows ?

Dear all,I have a very large heterogeneous network with different clients such as Windows and Linux workstations, where Linux machines do not participate in AD. Also we have a PKI infrastructure based on MS 2008 Certificate Authority. My question is,...

Hi to all,My company has deployed 802.1x using ACS as aaa server. Since our ACS deployment is based on ASC 5.3 we have to upgrade it because of lack of AD2012 support.  Of course I am evaluating to introduce ISE to handle 802.1x/Radius aaa and keep A...

I'm using NMAP for profiling and it seems that it runs only once for new devices on DB.There is no re-profiling after the device was discover for the first time and populate into endpoint identity groups with attribute list.In this case if profiled e...

Greetings,The PC in question has NAC Agent 4.9.0.33 install on XP SP3 running up-to-date Avast as well as PrivateFirewall.Upon launching NAC Agent, a window detailing "List of Antivirus & Anti-Spyware Products Detected by the Agent" appears, however,...

Is it possible to block simultaneous logins by the same user, meaning is userX login on port gi1/0/1 and after that the same user (UserX) is trying to login on a different port, it will be blocked.  

I am trying to renew the default self-signed certificate on the servers that make up our ISE cluster. I pull up the certificate to edit and select the Renew Self Signed Certificate box and pick an expiration range. When I go to save it I receive a me...

Hi there, I am trying to find a solution to exclude specific users from being authorized (AAA command authorization) when entering commands on the switch/router.We use an AAA setup with Cisco ACS. On the devices we use:aaa authorization config-comman...

I am trying to issue certificates to Windows 7 clients for machine certificate access though ISE.  I am able to receive the certificate on my Windows 8 clients but the Windows 7 clients receive ;Logon failure:the user has not been granted the request...

HI All,I have one ACS which is having 2 IPs configured within same subnet. At times one of the IP will be not responding. Please let me know what is the reason for the same.