Network Access Control

Quick Question - In NAC Guest Server, is there a way to reallow (ie unsuspend) a guest account after it has been suspended? In case you need, version of code used is 2.0.3.

I'm running ACS v 5.1 and have noticed that it an autheication fails the log doesn't show the username it there is a failure with the authentication, but if the autheication is successful the username shows up.  Does anyone know how to make it so the...

I dont know the answer. Someone asked me in an interview.

Hello,With ISE Radius service / PAP, the authentication passes OK, but the Network Element which send the autorization request, returns message "not enough user priviledges to execute command" and the HTTP page is blank.The reason for that is, the Ne...

Dilema Customer has 4 5508 wireless lan controllers being serviced by 3 NAC ServersWLC configuration will allow me to put in all 3 NAC Servers in the radius accounting field for VPN-SSO functionality.Radius acct updates allow sso through the CAS … BU...

Hello,we are currently evaluating the ISE 1.1 in a multiforest environment and we have problems to authenticate users which based in other domains (domain2) then the ISE (domain) is based.This is the setup:In domain1 is a MSFT CA with OCSP, DC and IS...

Normally, the event logs on the CAM would show the following when a user logs out of his system and CAM kicks the user session:SW_Management2012-06-28 09:43:03Kicked OOB user [OOB ## 00:24:E8:12:11:D7 ## 10.1.80.30/10.1.80.30] userID@abcde.com on por...

Is this possible to combine multiple access-lists (DACLs) to one vpn user?I try to assign two authorization profiles to user, it works, but in Authentication Results I see that user has only one acl? Is this bug?There is the same situation when user ...

Hi all.I am attempting to configure Radius authentication accross a site-to-site VPN for my ASA 5510-01 for remote access.ASA5510-1 currently has a live site to site to ASA5510-2. ASA 5510-1 - 10.192.0.253ASA 5510-2 - 172.16.102.1DC - 172.16.102.10AS...

Hello[Env on my lab investigation]supplicant - W7 with certauthenticator - Catalyst 2960 with IOS 15.0(1)SE2 /newest/authentication server 2x - W2008/NPS like a RADIUS server[Config some part of authenticator] interface FastEthernet0/1switchport acce...

Hi all,I have the following configuration:aaa new-model!aaa authentication dot1x default group radiusaaa authorization exec default local !dot1x system-auth-controlradius-server host 10.10.10.10 key cisco!interface FastEthernet0/1 switchport mode acc...

We've got an ACS 5.1 virtual appliance for device administration tasks and now we want to authenticate wireless domain users, but only by it's username/password, without trusting any CA certificates from the AD (is it required an ACS certificate too?...

Hi Expertson the acs 5.2 , how to delete specific log for user X, ?thanksjamil

hi  ,we have a ACS server V4 installed on W2003 server ,when we make a telnet to an equipement on the wan the authentication pass on the first connexion ,but when we telent to a switch on the lan the first connxion fails and we need to retry to login...