Network Access Control

good day collegues,I must have something wrong with configuration of my cisco devices. my accesspoint which is also a radius server rejects users if the username does not equal password.did you come accross of that kind of issue before ? could you gi...

Hello, I'm using a Cisco ISE on 1.3 and have a CWA portal setup for AD Auth. When a user connects to a particular SSID (from a WLC) that is setup for mac filtering, it redirects to a CWA via the Auth Policy. the CWA is disabled, they login, the devic...

HelloWhile trying to change the TACACS server I enteredno aaa-new model  before removing aaa authorization exec default group tacacs+ local I saved the config so now I can not enter aaa-new model because the router output is Authorization failed My q...

Hello Community, i have a problem, one Notebook in our enviroment authenticates successfully with Host-Lookup (MAC-Adress) and get the right VLAN but then also sends permanantly  PEAP (EAP-MSCHAPv2)   requests with a diffrent Username ( Username is n...

Hello experts,I need your assistance in installing ACS 5.5 in our environment. Currently we are using ACS 4.2 for windows server.I have searched on net and below are my assumptions. 1) ACS for windows is no more available after 4.2 version.2) For ACS...

Is cisco ASA with Virtual Contexts supported by Cisco ISE w/Trustsec and macsec?

HelloThe Byod procedure fails when launching "Network setup assistant"Error message  is: "This profile could not be downloaded, are-you connected to Guest Portal ?" WLC 5508  (VM) 7.5Wlan : FlexconnectConfig : AP FlexconnectISE 1.3Android 4.1.2Here a...

We are running ISE 1.3 tied to AD with WLC 7.6.130.0.  Our ISE has a GoDaddy (none wildcard) certificate loaded for https and EAP.  We are just running PEAP.  We have a mix of IOS, Android, and Windows 7/8 devices.  IOS and Android devices can self c...

Hi, all! Is it possible to make downloadable ACL works with Cisco IOS L2TP/PPTP server and Cisco Secure ACS 5.6? I'm getting attribute according to ppp negotiation, but nothing happens:000563: *Feb  9 13:50:34.676 MSK: ALLOC-FREE: AAA/ATTR(0000000F):...

Hi all,we have a VMWare 5.4 ACS server and we are trying to add a second interface. We added it logicaly, but server is not accessible through ssh or https in this second interface. I read in forum that physical appliance has several physical interfa...

Hello.I want to try to install ACS server for windows to check how this is working with Microsoft AD. Does anyone know where i can download an evaluation version of Cisco ACS Server for Windows ?

Dear all,I have a very large heterogeneous network with different clients such as Windows and Linux workstations, where Linux machines do not participate in AD. Also we have a PKI infrastructure based on MS 2008 Certificate Authority. My question is,...

Hi to all,My company has deployed 802.1x using ACS as aaa server. Since our ACS deployment is based on ASC 5.3 we have to upgrade it because of lack of AD2012 support.  Of course I am evaluating to introduce ISE to handle 802.1x/Radius aaa and keep A...

I'm using NMAP for profiling and it seems that it runs only once for new devices on DB.There is no re-profiling after the device was discover for the first time and populate into endpoint identity groups with attribute list.In this case if profiled e...

Greetings,The PC in question has NAC Agent 4.9.0.33 install on XP SP3 running up-to-date Avast as well as PrivateFirewall.Upon launching NAC Agent, a window detailing "List of Antivirus & Anti-Spyware Products Detected by the Agent" appears, however,...