Network Access Control

Resolved! How to use ACS 5.2 to create a static ip address user for remote access VPN

Hello everyone, I get problem.Please help me. At first I use ACS 4.2 to create static ip address user for remote access VPN,It's easy,just configuration it at user set>Client IP Address Assignment>Assign static IP address,but when I use ACS 5...

ACS 5.x timezones for Russia

From 2011 there is no daylight saving time (DST) in Russia so ACS system time is incorrect - UTC+3, must be UTC+4.1. We've tried to turn off DST and set manualy UTC+4 through ACS CLI but there are no required commands (like in IOS).2. We've tried to ...

Resolved! ACS 5.3.0.40 patch install

Hi All,We have just upgarded our ACS environment to the latest patch (5.3.0.40.8). Between -5 and -8 we didnt install any patch as you can see below.--> question : do we need (or recommened) to install all patches, including 6 and 7, or does the last...

Resolved! EAP Chaining with PEAP

I was wondering if we can do EAP Chaining with PEAP (Not EAP-FAST). For some reason it is not working for me.Ds

acs 5.x !

Hi Guysi have two acs 5.x Appliance on each site , the acs-1 which is represent the primary instance completely fail , i have replaced by a new appliance with a new pre-config (ip address , Gateway like the failed one) , now how to make the acs-2 wh...

ACS 5.4 - TACACS Authentication - Drop Straight into Enable Mode?

How do I achieve this?I successfully authenticate through ACS to my Identity Store, but only get dropped into a non-enable prompt: ciscoasa>How can I get an Authenticated user directly into enable mode?Let me know if you have any further quetsions.Th...

Lexmark Printers authenticate against NPS but not ACS 5.4

Hello,we are doing a new installation of a Cisco ACS 5.4 replacing a Microsoft NPS.Recently I ran into issues with Lexmark wireless printers authenticating against the ACS 5.4.While these printers work against the old Microsoft NPS we want to replace...

TACAS++ maximum length Password

Hi everyone recently we have installed TACAS server for all kinds of authentation. What i came to face is that when i configured enable mode password on ASA 5520 or 5510.......maximum length this password is of 8 character but i need to more characte...

Resolved! Dot1x - Difference between "mab" and "mab eap"

Hi guys,can someone explain the difference between "mab" and "mab eap" to me?I`m trying to do dot1x with EAP-TLS with MAB as a fallback method.The explanations I found in the config-guides are very poor.Thank you for your help.Mathias

ACS 5.2 AAA tacacs with SSG-350m 6.1.0

Having a ton of issues trying to get ACS to authrorize a Juniper firewall.We have configured the SSG correctly, and do not have issues logging in as root with full access.However we are trying to create a read-only account for external clients, but n...

Strange fake0 interfaces and arp problem.

Hello.I have discovered another problem with CAS server. CAS IP = 192.168.9.9/23CAS GW = 192.168.8.1CAS DNS = 192.168.8.2I can ping my Gateway, google IP ( 74.125.229.201 ) and all others hosts that are not on the same subnet. I can ping from any oth...

Resolved! ISE Provisionning

Hi all,I currently test Cisco ISE virtual appliance and I have some question about functionnalities and provisionning.I already bind my ISE appliance with a windows server 2008 enterprise to realize SCEP. I begin with this product, so I commit maybe ...

Resolved! Cisco ACS 5.1 to 5.3

The base license for ACS 5.1 is 5.X, do I need any upgrade license in order to upgrade to 5.3 ? The ACS is not in production so I can make fresh 5.3 install if is needed.Thank you.

ACS 4.0 and Windows 7.

Facing challanges in integrating ACS 4.0 with Windows 7. Please help.Is ACS 4.0 with Windows 7 compatibility?

Problem of connections ports

we configured tthe cisco switchs to support by ISE version 1.1.1 but We have a issue about some PC Users that cant connected if they changed ports access the on switch the mac address table display that the mac address of Deskyop or Laptop is static ...

Network Access Control

Forum Posts

Resolved! How to use ACS 5.2 to create a static ip address user for remote access VPN

ACS 5.x timezones for Russia

Resolved! ACS 5.3.0.40 patch install

Resolved! EAP Chaining with PEAP

acs 5.x !

ACS 5.4 - TACACS Authentication - Drop Straight into Enable Mode?

Lexmark Printers authenticate against NPS but not ACS 5.4

TACAS++ maximum length Password

Resolved! Dot1x - Difference between "mab" and "mab eap"

ACS 5.2 AAA tacacs with SSG-350m 6.1.0

Strange fake0 interfaces and arp problem.

Resolved! ISE Provisionning

Resolved! Cisco ACS 5.1 to 5.3

ACS 4.0 and Windows 7.

Problem of connections ports

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Knowledge Hub: Cisco Technology for Securing the Enterprise

Cisco + Splunk: It's a new day for your data.

Announcing Resources That Guide You to Success

Cisco ISE- import CA store fails

ISE 3.3 Multi-factor Authentication with Duo - change synced username

ISE SLR and Web GUI

ISE 3.4 Patch1 Feature release - Get ready to upgrade

ISE as an Endpoint EAP-TLS certificate expiration audit tool

Cisco ISE DB not starting

isebackuprepository: error - transfer failed

"Unable to insert secret into keystore" error when enabling TrustSec

9300L switch to use configured ENABLE password within ISE per user

Cisco ISE in distributed edeployment , All PSN have same Policy sets ?