Network Access Control

I have a admin who nested a Network device group inside another network device group. Is that reccomended? For instance, there is a NDG for Asia, and inside asia he put other NDG for Routers, another for switches, and yet another for firewalls. This ...

Hi all!I´ve been practicing for CCNA Security. I´ve configured aaa authentication and authorization locally with radius server and local respectively. I´m also managing Role-based CLI views. The problem is when i issue the show running-config command...

Hello,I want to set up the ACS 5.1 for dot1x-Port authentication. I want to make a machine authentication against an AD-Domain and I got the following error Message:24435  Machine Groups retrieval from Active Directory succeeded24100  Some of the exp...

Looking at the following configuration on a Cisco Router:   !aaa group server radius 8021x  server-private 192.168.1.1 auth-port 1812 acct-port 1813 key SECRET-A!aaa group server radius radius-auth server-private 192.168.2.1 auth-port 1645 acct-port ...

Hello,are there anyone out there who have experience with running ACS 5.2.0.26.3 with AD-integration towards a Win2008 R2 SP1 server? We recently had big problems with ACS 5.1 and Win2008 R2, and got thousands of "radius latency..." error messages. I...

Hi friend,Someone could help me about authenticate phone Mitel in ACS 5.2. I tried to authenticate a PC wich is behind of phone Mitel, but it doesn´t working.the solution work fine with vlan mapping.This configuratión work fine with Phone Cisco but n...

Hi,Does anybody know where I can find a CLI password recovery procedure for the administrator account?

Hi thereSituationI configured dot1x with ACS 5.2 on a WS-C3750X-24P (12.2(58)SE1). I configured EAP-TLS and MAB for a port with the following configurations. It looks like this: access port -> ip phone -> clientGeneral Configuration switchport access...

Hello Everyone . i have really bad experinace with Cisco NAC and linux users .. so far with help of The great Cisco TAC team we fix the issues .i just want to confirm somthing .. Does NAC Host Posture Validation for Linux users ?? Can i do any requir...

I set up LDAP store pointing to a Windows domain and am testing authenticating users via an ASA.  In my LDAP config, its set for "Groups Objects refer to subjects" and I selected usernames in the drop down.  I also added a a Global Group to the Direc...

Hi all,I would like to create a user that is able to logon to an IOS switch and have permissions to show running-config This user is to be used for Cat tools config backup. The user needs to be able to see all config "privledge level 15".Does anyone ...

Hi all,I'm curently studying for my CCNP Switch certfification, and I'm learning about RADIUS and AAA. I need to practice this topics, but unfortunately I can't find any way to do it. I have cisco ACS 4.2 but I'm unable to install it on my Server 200...