Network Access Control

I need to use 2960s lanlite version as a access switch, but this model can do nothing with posture and web auth.So I have to use multi-auth instead on compact switch for endpoint auth.But I noticed only HUB can work with multi-auth.Is there any solut...

with Cisco Expert Bernardo GasparWelcome to the Cisco Support Community Ask the Expert conversation. This is an opportunity to learn and ask questions about Identity Services Engine (ISE) and its various usage scenarios and integrations such as BYOD,...

Every time I send an access-accept radius message, in this message an attribute 25 is sent. I would like to remove the standard class attribute. "Class=CACS:ACS-CLA-01/151253728/39754" where ACS-CLA-01 is my hostnameplease help?                  

Dear All,I need to Migrate from ACC 4.1(1) to ACS 5.4Have configured Network Access Restrictions and Networks Access profiles in ACS 4.1(1)PLease update me can i go for staright away migration and is the same supported in ACS 5.4Please if anybody can...

Hello All,I used to utilize CSSC as a wireless supplicant on my machine when I had windows XP.I tried yesterday to install it on windows 7 (I tried vista version) but it does not seem to work with windows 7.I was searching and I found somewherein thi...

Hi Forumers'I need to know how WLC can support ISE guest management in wireless mode. Tested and confirm by Cisco SE, Knowing that WLC currently does not support dynamic VLAN authorization for central web authentication. This limitation will be addre...

Hi,I have configured RADIUS authentication for VTY access to a Catalyst 2960S running 15.0(2)SE2.The RADIUS server is a Microsoft server running the Network Policy and Access Service role (Microsoft's own RADIUS server).Everything is ok apart from th...

GreetingsWe currently have Cisco ACS 4.2 running with verisign trusted SSL certificate running 1024bit.  This SSL certificate is used for PEAP and wireless users with WLC.  Since the new standard by Verisign is issuing 2048bit we can no longer renew ...

Hello everybody,The subject pretty much self explanatory. I have a fresh ACS 5.4.0.46.4 installation consist of 2 boxes in a distributed enviroment. Everything besides policy left to defaults.After, say a reebot to secondary box it takes very long ti...

Hi,I just have a basic question. When ISE is integrated with AD to authenticate Windows users, what exactly goes on between the ISE and AD. For example, if ISE sends a "Access-challenge" to the client PC, the PC will respond with the hash of the chal...

Hi,I'm involved in the rollout for ISE. While trying to connect to the Guest profile using the browser, it gets connected to the Guest profile, after authenticating the credentials. But after some time, the connection gets disconnected automatically ...

Cisco ISE Ver: 1.1.2.145Windows : Win 2003 ServerI am attempting to integrate ISE with AD, but ISE won't join AD and joining attempts fails, though I am able to add same domain as external LDAP identity store ?1.user used to join the domain has admin...

We are planning to use Cisco AnyConnect Network Access Manager as a 802.1x supplicant for our wired network as we ran into issues with  Microsoft native supplicant. There are certain advantages in using inbuilt supplicant on Windows as one can get de...

hi guys,     when i try to enable acs migration web interface,i got the error message as below,anybody would be help on it,thanks in advance!acs52/admin# acs config-web-interface migration enableFailed to modify webapp statepasted the logging as belo...