Network Access Control

Not sure if this is the right place.We are running Cisco ACS version 5.1.0.44.6....and are having issues with the Monitoring and Reporting Database Purge/Backup.Every morning on the dashboard screen I get the following messages.[Critical Alarm]  Syst...

Hi everyone,After lots of testing with laptops authentication with ISE over wireless using EAP-TLS, we have a few laptops that despite having the same client configuration attempt to use PEAP. This ultimately fails and I'm unsure why they're trying t...

Hi all,I need some advice on the authentication of my switches.I have a network set up where every switch uses telnet only for the transport input method. I need this to change to SSHv2 only.I also have a RADIUS server backing off to Active Directory...

  I proposed New ACS 5.4 Appliance - CSACS-1121-K9 and upgrading current ACS 4.1 to ACS 5.4-CSACS-5.4-VM-UP-K9my customer want to do configuration/databse  replication between two ACS.   Is it possible to that ACS in VM can work  with ACS in applianc...

Cisco 2950, ACS 5.3ACS tested, I created a local account on the ACS and enabled authentication on the 2950. All working.Dot1x - not workingConfiguration on the switch:Switch#sh run | i dot1xaaa authentication dot1x default group tacacs+aaa authorizat...

I put a customer on 802.1x using 4510. The CPU went up and trying to troubleshoot why. I have a similar setup some place else and everyhting is normal. Any ideas??4510_SW# 4510_SW#sh verCisco IOS Software, Catalyst 4500 L3 Switch Software (cat4500-IP...

Dear all,I'm using ACS 5.5 to authenticate dot1x users on my switches.I have enabled accouting reports on my switches. I can see the accounting reports abut the net usages of every user on the monitring secton.However, I was wondering if there is any...

I have configured ISE High Availability with two ISE virtual servers.While testing HA I powered off primary server, after powering off primary server secondary ISE becomes active but not able to authenticate any clients.ISE supposed to authenticate f...

Hi support community,I am experiencing an issue while trying to create some read-only users on my FWSM.I've setup the authentication on my RADIUS Server, which works fine, and put the aaa authorization command LOCAL  command.I've also set the command...

Hi All,First time posting, hope y'all can be gentle. Can I get a "for dummies" explanation of the RADIUS Attributes, maybe for the dictionary RADIUS-IETF first.For example, if i'm goinfg to make a Condition, and choose RADIUS-IETF as my dictionary, w...

Hello,We have some problems with our ISE 1.2 during onboarding BYOD's.Onboarding works fine for a lot of devices. But when onboarding a Windows 8.1 laptop we receive the following error:"Your device is not supported"We using the latest ISE 1.2 patche...

                   Hi, I'm using ISE and I want to redirect https traffics to one web-page.so I used cisco-av-pair = url-redirect=test123also, test123 is existed in WLC withdeny https anydeny any httpspermit ip any anyhowever, it does not redirect to...

Hi all I have couple of user in acs , all the cisco switches authentication is happening through acs( local users in acs) and enable password locally on the switch .Now for one user  i want to mange enable password through acs Is it possible Thank yo...