Network Access Control

Hello EveryoneI have few questions regarding 802.1x authetication in wierd enviornment and with VLAN assignment by ACS. Please help me with these1. How do I use 802.1x authentication in Windows enviornment with domain authentication? Is that the PC f...

Hello,This weekend we have upgraded the ios on quite a few switches on a larger site, the site is a mix of 2960 and 3560 switches and the previouse ios versions were 12.2.44 on most switches but some had an older 12.2.25.On monday when we came into w...

HI all,i have a juniper SBR and large no  of cisco devices as RAS/NAS.i would like to have level 1 team to have just read only profile .and level 2 team to have read and write access . i guess to accomplish this on a non cisco aaa product  , 1) DO i ...

Overview:  Cisco 5.3 cluster, with primary server and secondary servers at separate datacenters.   For remote vpn authentication through Cisco ASA, using radius authentication and Active Directory security groups.The primary and secondary ACS servers...

Hey, Are there any best practices guide lines for setting up the device types and stuff on the ACS? I know this is probably something that is up to the actual user but was wondering is there were any guidelines or recommendations to make things easie...

Hi all,we have a large detabase of cisco routers and swithches , we want to have a radius authentication and athorizaion level set to read only and (rd , rw) for certain users.ie for company employees read write access and for outside auditors/consul...

Hi,I've got a pair of ACS 5.3's - primary and secondary and am trying to configure scheduled backups to an SFTP server.I've configured scheduled backups to backup ACS every night at 00:00System Administration >  ... >  Operations >  Scheduled Backups...

Hi experts,I'm looking into a network access control solution, and I have the following questions:1- My understanding is that ACS assigns unauthorized assets to a guest vlan/zone, but what happens next if access to resources (such as internet) requir...

I have setup my radius server access on the Nexus but am unable to authenticate through putty. If I do a radius-server test on the Nexus it says I authenticate. Here is the log I am getting. I would appreciate any help.2012 Mar 14 16:03:21 switch-a %...

We setup certain users to use a particular password authentication, i.e. local or Entrust.  This is used for local ACS accounts to log into switches with their Entrust/VPN credentials instead of using a local user DB.  Is there a way to set this?

Hi all,I have an identical ACS 5.1 pair connected in active/backup mode. Is it by design that only the primary ACS IP address should be "pingable" from remote subnets but the secondary ACS only from the local subnet, or is there a configuration setti...

Once I used a router (3660)for dail-in with ACS and RSA,then  I am going to take the 2611 over 3660,and the configure are basicly the same. But I can not dail-in with token,and on the ACS I found this message:cached token rejected/expired.However if ...

Hello frineds,Could anyon hep me in getting Certificate revocation list configuration in ACS.I have 3 CA certificates attached in ACS. 1 is root & 2 other are intermediate certificate.Now I should configure revocation URL's & configuration in which C...

I've been trying to find the right information on Cisco's site, and I'm not having success.We have a 3900 router that we would like to do authentication via a local userdatabase.  We want ssh access and console access using a local user on the router...