Network Access Control

1) Would someone be so kind to post a screenshot of secureacs 5.4 user properties showing the per-user expiration/account lock policy that is now available to be overridding at a per-user level?2) Is there a way yet in 5.4 to set a password to never ...

ACS 5.x can configure preferred EAP protocol:Preferred EAP protocolSelect the preferred EAP protocol from the following options available:•EAP-FAST•PEAP•LEAP•EAP-TLS•EAP-MD5This option helps ACS to be flexible to work with old supplicants (end device...

            With Javier Henderson Welcome to the Cisco Support Community Ask the Expert conversation. This is an opportunity to learn and ask questions about how to configure and troubleshoot 802.1X.  802.1X is an IEEE standard for media-level access...

Hi, I am using Cisco ISE Central Web Authentication for Guest Wireless. Clients are redirected for web authentication to: https://ip:port/guestportal/gateway?sessionId=SessionIdValue&action=cwa as it is specified by the url-redirect parameter in the...

Help I have a Version: 1.1.4.218 ISE application and checking the logs I see the following message:Radius,16/12/2013,12:56:41:704,WARN ,1271798672,NIL-CONTEXT,Class Attriubte not found,RADIUSHandler.cpp:413Radius,16/12/2013,12:56:41:740,WARN ,1271798...

If I want a customer to view logs specifically for his devices, is it possible to set up ACS to grant them access to their device logs?   On 4.x I was able to grant a user access to add VPN users that could only access their Firewall and that is all ...

After creating an MS Excel Spreadsheet using data from SNMPGET calls to our network kit; I'd like to share a number of Gotchas.1. Description mustn't have commas and I chose to remove the web references too (//)2. There must be NO trailing Spaces in ...

Hi I have 2 ise 3315 working in stanalone modeI have 2 sitesISE_1 is installed on site 1 and manage user groupe_1ISE_2 is installed on site 2 and manage user groupe_2I am plannig to use the 2 ISE in fail overI would like to configure 1. ISE_1 to be p...

Hi All,Am looking for a way to audit all of my network devices in ACS - report on those that have not had any authentication attempts against them in say the last 7 days.  Is there a way to do this?  Don't see anyting obvious in the Reports options.T...

Hi guys,I have already configured a couple of ASA CX, but one of my customer the integration with AD doesn't work. With LDAP instead of Active Directory worked, but with LDAP I can't use passive authentication.Anyone can send me a link with Microsoft...

Working on an initial piloted roleout of ISE with a customer. We initially had a single server setup as a pilot using 1.1.1.4 to pilot things like client supplicant provision, and then stood up a new VM as a secondary and upgraded that to 1.2. Today ...

Hi all,Consider this scenario. A Cisco IOS device authenticates access to its VTYs using two tacacs-servers put in one server group. Normally, as implied in the IOS security docs, the second server is used only if the first one times out.My quiestion...