Network Access Control

dear,We are encountering a certificate issue when a pc tries to log on using dot1x (eap-tls).22047 Principal username attribute is missing in client certificateWe define in "certificate authentication profile" a profile using the subjectof the certif...

Hello,I have not managed to get the Monitoring to work on the ACS 5.1. This is an eval version. Advanced monitoring and reporting is installed on the ACS. This is my configuration on the Cisco Routeraaa accounting exec default start-stop group tacacs...

HiI still don't have access to ACS 5.4 I'm planning on how to do the policy rule.I would like that a given user could belong to several groups, my understanding is that ACS expects to only use ACS:CiscoSecure-Group-ID and that no other AVPs are suppo...

HiI'm trying to figure out if it is possible for the RSA Authentication Manager return attributes when the RSA Authentication manager is _not_ using an external directory (ie: LDAP, AD).Looking at this it is possible to receive attributes when the RS...

We have two ISE nodes behind a Cisco ACE load balancer.Everything works fine so far, except when I'm logged into the sponsor portal, my connection is sometimes "reset".For example, say I'm on the single user creation page, and after creating an accou...

We are currently working with a consultant on a project to implement and upgrade our wireless network. The question that we were asked is, do we want the wireless only licensing for ISE or wired and wireless licensing.   Is 802.1x in a wired situatio...

Hi,I've been configured my device 6506-9 with TACACS+ server authentication:enable password 7 1414131F5C542638aaa new-modelaaa authentication login default group tacacs+ lineaaa authentication login no_tacacs enableaaa authentication ppp default grou...

Hi All,I have been running ACS 4.3 version in my enviroment. So far everything have been going good since all devices are authenticating with my team members. But now i have been told to provide authentication to other members on only some devices(2t...

Hi guys I am going to write a short story and will try to explain the problem I have.Here is my setup. I have two ISE servers running I. Primary and secondary mode. Ise1 and ise2. Everything is configured and sync is complete. My access switch is a 2...

hello,i am trying to open an SSH sesson (SSH2) to the ACS appliance but i am getting " No Compatible key exchange method".can any advise an easy way on how to login to this box (Not Console),thx

Powered down my ISE 1.1 server and booted it back up and now it won't start correctly.We have rebooted it multiple times and tried to manually start the services but no luck.  Any thoughts?ISE-1/admin# sh ap stat iseISE Database listener is running, ...

Hello.I'm doing a basic setup of ACS 5.3. For now, I'm configuring backup to a local repository!repository Backup  url disk:/Backup!How can I automatically delete old files? I need to keep only the last seven files.Thanks.Andrea

Please help me guys i am getting this error while our switch is  authenticating with AAA TAC+: Opening TCP/IP to 172.26.75.162/49 timeout=502:50:58: TAC+: Opened TCP/IP handle 0x39B9A60 to 172.26.75.162/49 using source UNKNOWN02:50:58: TAC+: periodic...