Network Access Control

Resolved! ACS 5.2 allow only specified client cert

Hi thereI would like to implement a policy, where I specify which client cert (CN name) is allowed. Let's say we have 2 SSID's and 2 different client certs:- client1.domain.com should only be allowed to connect to SSID1- client2.domain.com should onl...

Resolved! ACS 5.1 User password expire not working

hi, I have configured under Administration password policies about password lenght, items to be putted as number, letters and so on.on the second tab is the password expire for users and I configured to expire after 90 days.I even tried creating a ne...

Resolved! ACS 5.0 RADIUS timeout with WLC 7.0

Hi Guys,I am configuring a Cisco Secure ACS 1120 appliance running ACS 5.0.0.21 to handle RADIUS request from a Cisco WLC 5508 appliance running version 7.0.116.0.these devices have open communication on all ports - no firewalls or ACL'sthey have suc...

Resolved! Can't run service perfigo config command on NAC

I have a new NAC Manager server for a fresh deployment. I logged in using root password with a serial connection to the server.I can't seem to be able to run the "service perfigo config" command to perform the initial CAM configuration.[root@nacmanag...

Resolved! prevent SSL VPN user from accessing ASA cli

Hi ,I've configured several users on my ASA in it's local database. Those users are used for ssl vpn login, but the problem that I have is that those users also have SSH access. Is it possible to prevent this ? Thanks

ACS log Configuration

we have ACS 4.2. THings are working fine. I want to have the ACS logs to the external serveras well as want to keep the log on the ACS for more than six months. Currently logs showingonly for the one month but not more than that. I am not able to fin...

Resolved! Network devices access restriction configuration with user level in ACS 5.0

Hi Experts,I have task of configuring TACAC with different user level for all routers and switches,To elaborate more, I have engineer , analyst and site engineers so I want to configure centralized tacac authentication with different privilage levels...

Cannot launch Monitoring & Report Viewer

Hi everybody,i just installed ACS 5.1.0.44 with the latest Patch on a VMWare virtual machine and installed the evaluation license.Everything works fine except for the "Monitoring & Report Viewer"-Tab:When i try to launch the Viewer, it opens a new br...

Resolved! ACS for Device authentication

HelloI am looking to deploy a NAC device in our office and currently have an ACS server that handles wireless authentication.I would like to know if the ACS is capable of authenticating users on a LAN with both 802.1x and device detection (such as MA...

ACS 4.2 failure to authenticate windows users

Hi all , we have a bit of a problem which we cannot seem to resolve.The ACS can authenticate people using local database , it can also authenticate a single user (using windows database) if you are fast after the service is restarted , however after ...

How do I limit number of login attemps on NEXUS with TACACS+?

How do I limit number of login attemps on NEXUS working with TACACS+ ?And also how do I set an authentication fail massage?In IOS it was done with :aaa new-modelaaa authentication attempts login 5aaa authentication fail-message ^Failed login. Five co...

VPN Client and AAA services on a Cisco ISR Router

Hi, my name is Jim, and I was just promoted as a trainer for the company I work for. Part of my new challenge is understanding how the configuration files in both my Terminal Services/VPN Router and Core Router work, so for many of you, these questi...

Resolved! Secondary ACS server: pending.

Hi all.I have got next problem. There are 3 ACS servers: 1 primary in Moscow, 2 secondary in Moscow, 3 secondary in Europe. Relationships between servers in Moscow excellent, between primary and secondary in Europe not good: the automatic replication...

ASC SE 1113 boot failure

folksi'm trying to re-image an asc se 1113 with a recovery cd but i keep getting a disk error complaining of an invalid destination drivehas anyone seen or recovered from this before?thanks

Resolved! Upgrade ACS 4.1 to 4.2 Authen session timed out: Challenge not provided by client

Hi,I have upgraded Cisco ACS from 4.1 to 4.2, I have Cisco Access Control 1113 apliance, as soon as I upgraded I am getting error in failed logs"Authen session timed out: Challenge not provided by client", what is wring with this? plesae help meThank...

Network Access Control

Forum Posts

Resolved! ACS 5.2 allow only specified client cert

Resolved! ACS 5.1 User password expire not working

Resolved! ACS 5.0 RADIUS timeout with WLC 7.0

Resolved! Can't run service perfigo config command on NAC

Resolved! prevent SSL VPN user from accessing ASA cli

ACS log Configuration

Resolved! Network devices access restriction configuration with user level in ACS 5.0

Cannot launch Monitoring & Report Viewer

Resolved! ACS for Device authentication

ACS 4.2 failure to authenticate windows users

How do I limit number of login attemps on NEXUS with TACACS+?

VPN Client and AAA services on a Cisco ISR Router

Resolved! Secondary ACS server: pending.

ASC SE 1113 boot failure

Resolved! Upgrade ACS 4.1 to 4.2 Authen session timed out: Challenge not provided by client

pxGrid Certificate-Based Authentication - 503 Service Unavailable

ISE Posture – Long boot and no network access

External MDM heartbeat interval and Azure Public IP idle timeout

Issue with Posture Agent "Checking for product updates..." 0%

ISE BYOD woth Entra ID failing

ISE Patching

Help with Cisco ISE Deployment – Main ISE in Europe, Remote Site in US

Delete alarms last occured in Cisco ISE Dashbord version 3.3

ISE 802.1x PEAP-EAP-TLS Auth with Entra ID ISE 3.5 Availability

Cisco ASA ip helper for lab