Network Access Control

why there is one hour time drift on Cisco ACS

the cisco NAC web agent can't detect AV (system center endpoint protection) is updated although it is updated.by troubleshooting , it seems it is related to Windows 8.1 as i tested the same AV on another machine Windows 7 and it is working.any body f...

Having issues getting "aaa authorization commands radius" working in ACS 5.5 for a simple deny or permit statement. I have the Vendor VSA configured as in 4.2 but cannot get this working correctly on 5.5. Anyone have this issue or can provide insight...

In the process of integrating ISE 1.2 into our environment with the eventual intent to replace ACS 5.x and having a challenge adding an RSA SecurID server as an external identity source.In ACS, we would create an internal user but configure the passw...

Scenario #1:prodacs1 and prodacs2 version 5.4 patch 6 with IP address of 10.1.1.1/24 and 10.1.1.2/24, respectively.  Both prodacs1 and prodacs2 are running on VMWare ESXi 5.1.  Both are sync'ed with Active Directoryand authenticate users to manage Ci...

HI. I wanna configure the following on Cisco ISE 1.2.1.Self-registration portal for guests (SSID: guests)802.1x user certificate check (Cisco NAM supplicant) for employees (SSID: Corporate) (EAP-TLS)Self provisioning portal (to deploy BYOD certificat...

Hi,A PSN was powered down by accident and I'm trying to register it back to its PAN as part of a distributed deployment but I keep getting the error message "ISE not in Standalone mode".I'm not sure how to set the PSN node back to Standalone mode whe...

I am trying to set my ISE to attempt dot1x before mab. If I set up the switchport to try mab first, then ISE does its job and assigns the proper vlan. However, when I set the port up to do dot1x first, the port reverts to the default vlan 1. I am abl...

Hello at all.I'm restoring a 5.3 backup to a new ACS 5.5 patch 3.Restore procedure works fine but when I restart the server service runtime doesn't restart. acsuno/admin# sh app stat acsACS role: PRIMARYProcess 'database'                  runningProc...

Hi all, Is it possible to issue a port bounce during guest flow process? After dynamic VLAN allocation I need to bounce the port so that DHCP renew is performed on the new VLAN. Doesn't seem to port bounce at present, but I'm guessing that the port ...

hi all, my customer trying to remove the aaa and tacacs server from the device and fails.router#conf tEnter configuration commands, one per line. End with CNTL/Z.router(config)#no ip radius source-interface Loopback0 vrf DATArouter(config)#no ip radi...