Network Access Control

Hello,in cisco doc (http://www.cisco.com/en/US/docs/security/asa/asa84/configuration85/guide/access_aaa.html#wp1053730) is written:Merges a downloadable ACL with the ACL received in the Cisco AV pair from a RADIUS packet. The default setting is no me...

Hi,i want to control manageent access to symbol Wireless Switch WS6000 with my ACS.the issue is that i can't find the Vendor Specific Attributes forSymbol devices.i wonder if theres a way to control it with IETF or Other Radius Attributes.thanks in a...

HiI am trying to set up a filter for VoIP phones (not cisco) and use the mac address of 08:00:0f*                 Every time I try to submit this the ACS bounces is back saying the input is invalid despite it showing the same format in the example.  ...

Dear Cisco,Since we installed the mbssid feature on certain access points to broadcast 2 ssid's on thesame time, we are experiencing strange behaviour concerning certain users trying to log in : May 11 17:16:49: %DOT11-7-AUTH_FAILED: Station 0018.deb...

                   Hi all,On Cisco 1900 i see this on logMay 15 15:28:28.855 MDT: %AAA-3-BADSERVERTYPEERROR: Cannot process authentication server type tacacs+ (UNKNOWN)May 15 16:16:50.695 MDT: %AAA-3-BADSERVERTYPEERROR: Cannot process authentication ...

I have an acs 5.0 running on Cisco 1120 appliance. It has worked for 2 years.Suddenly, I discovered that user can no longer login with their credentials.On close examination, when I console, the booting does not complete. Screen shot attached.Please ...

This error shows up when attempting posture assessment on one of our patched Windows 7 computers, using Kaspersky Anti-Virus 6.0.4.1424 for Windows Workstations. It persists even if the Kaspersky Firewall is disabled and Windows Firewall is used in i...

Question on this, is 5.2 backwards compatible with 4.2 appliance? If not, what is needed to bring the 4.2 appliance up to 5.2 and will the VMWare version work for the second system with the appliance as primary?  Years ago I had 2 of them and replica...

HiI am quite familar with ACS and have granted access to resources through configuring Group Mappings to our AD including WCS acces and access to network switches.However I want to grant access to staff to be able to create local accounts on ACS to a...

Hi,I am in the process of testing ISE. I have run into an issue when a user needs to reauthenticate the below popup that request aditional information happens to fast that you sometimes do not even notice it or able to click it in time to retype your...

Hi Sir,I have some doubts about the attribute in ACS: cisco-av-pair. I setup some ACLs in this attribute and hope this attribute can be sent from ACS to my PIX/ASA for future filtering usage if an user passes the first authentication attempt. I found...

I have a cisco nexus 7000 switch and a cisco ACS 5.2. I would like to setup the switch to be able to authenticate users with tacacs+ using RSA secureid tokens when they try to logon to the switch. Does anyone know where I can find documentation to do...

Let's say VoIP network is going to be deployed in my organization.GIven this is a FIPS-140-2 environment, we will have a separate MPLS network from data only dedicated for VoIP traffic.If we also have NAC deployed, how is the best practice for NAC ha...