Network Access Control

Hello,Is it possible to use wildcard (*) or regexp in ACS 5.2? For example, I would like to create an End Station Filter that would match when the DNIS is *somethingThanks

Hello,I have a question. What is the requirement of integrate ACS 4.2 Appliance and AD about CA server? it has to be windows 2003 server enterprice o windows 2008 enterprice? or it can be windows 2003 and 2008 stand alone? another question is about m...

Hi All,I just want to know if i need to support High Availability in Cisco Secure ACS 5.1 appliance, will the base license suffice or do i need to buy Security Group Access System License/ Large deployment License. Again, do we require license for ea...

Hi All,     I have a ACS 4.2 under windows, I setuped it to authenticate routers by RADIUS and TACACS+  protocols. now I have some devices whitch know only LDAP protocol. How can setup ACS as a ldap server to authenticate those devices?>

Hi,Starting a project where they customer has ASA 5585X with SSP40 with 10K SSL Premium Lic and ACS5.1The cust wants IPSec, and Anyconnect Client terminations. The number of users will be close to 6000 and will scale.Due to the huge scale of users, i...

I am trying to setup up a rule to allow wireless access only to users in my AD when they use computers from my AD.I have Machine authentication working on it's own (computer boots up and connects to wireless - confrimed by ACS logs)I have User authen...

Hi,Seen a strange problem recently and I can't see what is causing it.  Running Cisco NAC 4.1.6 OOB on the LAN.  For some reason in the middle of the night, the snmp trap mac-notification added command appeared on the trunk uplink port of one of our ...

Hi,I am using an ACS 4.2 trial version, and am trying to enable the password aging feature.  I am using the ACS internal database for users.  I have looked at the user guide, which has clear instructions, but I don't seem to have the ability to set p...

Hi there,I have 2 ASA 5520 (v. 8.21) in a active/standby failover configuration.VPN users are autenticated against the MS-AD through LDAP. For the most part this works well. Occasionally I'm having problems with new users in the AD. If I run a test I...

HiI've Cisco NAC deployed, and all is good so far. Lately, I've added an internal WSUS Server in my LAN. Hence, what I want to achieve here is, I want all my LAN users when accessing into the LAN via Cisco NAC, the Cisco NAC should check with the int...

Hello,I configured dot1x on my swicth 4500 series, Here is the interface configration:interface FastEthernet3/2 description Test dot1x switchport mode access load-interval 30 authentication event fail action authorize vlan 800 authentication host-mod...

HiI have a web srver behind ASA fiewall, server team s managing this sever throuh ssh access. I wanted user authentication to be enable when ssh traffic passes through ASA. I cofigured user authentication but web server team are not able to connect t...

I am scratching my head with this but getting more confused: Background:The customer has a 2 CAS servers. One CAS is already in production as OOB-Real IP Gateway for their wired LAN users. They want to use NAC for the remote-access VPN users and wire...

Hello,I'm am looking for a OID to poll the status of dot1x configured ports, when the port has been disabled due to a DOT1X-5-FAIL I would like to see this when polling the switch. So far I'm not able to I have used the MIB's below, but I can't finds...

hellois it possible to use wildcards in Compund Conditions in ACS 5.2? i've been suing the following to try and match a username that contains @*.*:This would hopefully match a username like j.blogs@somewhere.com but doesn't work as expected - am i d...