Network Access Control

Password Aging & Account Lockout in ACS 4.2

I have a requirement that in ACS the user accounts should get disabled after 1 day , so in the group setting under the Password Aging Field I configured the same as 1 day , the Grace & Warning Period is 0 days I want that all these user accounts wou...

Multi site ACS deployment

can i deploy multi site ACS to authenticate all the network at main office and branches, i have main office plus 2 remote site, i have MPLS connectivity between remote sitesand main office

AAA authentication over L2L

Hi,I have an ASA5505 with a L2L tunnel set up for our main office. L2L is working - no problems there.The problem is we have some Remote VPN Clients that connects to this ASA 5505.. And i need it to authenticate to our radius (Windows 2003) in main o...

ACS debugging

HI all, Cisco ACS appliacnce is getting hanged.How to troubleshoot in hardware level.how to troubleshoot with Package.cab file .Regards,Anish

AAA Authorization

HelloIf i want to allow certain commands for a user on switch with privilege level 2,,Do i have to create the user in local database on switch as well as in ACS ?????? I dont think so , Correct me if i m wrong???If i have specified privilege lev...

Migrating ACS 3.1.1 to ACS 5.1

I am migrating from ACS 3.1.1, which is not supported by the Migration Utility. So i am planning on importing the users and groups manually using the CSV files. I have generated a dump of the database using the csutil. My question is, How can i impor...

Resolved! Router Access for Specific ACS Group

I want to use TACACS to control access to all our Cisco switches and routers. I have an Cisco ACS device that can be used to centrally manage engineer accounts. The ACS server is, however, also used to store our corporate users VPN accounts.Can I lim...

Adding RSA and AD users to ACS 5.1 groups

Migrating from ACS 4.2 to version ACS 5.1. I have AD and RSA user's in 4.2 and belong to an ACS group. I was using class 25 attribute on that group. I do not have corresponding groups for these users in AD or RSA. How can i achieve the same thing on ...

ACS server - read only access

HI,how to provide read only access to user group (two users in the group). they are provided admin access as of now so will have to remove it and provide read only access.

Cisco Secure ACS with UCP assistance and enable password

I am running Cisco Secure ACS version 4.2 running on a Standalone Windows 2003 Enterprise 2003with the lastest windows service pack and update. Secure ACS is running fine and I can authenticate with Cisco routers and switches. The Windows 2003 serv...

Resolved! AAA Authentication Question

I'm using ACS 4.2 and I defined in global Authentication Setup the EAP to use EAP-MSCHAPv2 and EAP-TLS.For some of my users I would like to put in place 802.1x on wired with EAP-TLS only. How to do to restrict EAP-TLS use only on a set of devices (Ci...

ACS Radius Proxy Forwarding

HiWe are looking at broadcasting another company's SSID over our wireless network, I've been told we can use Radius Proxy Forwarding.Currently using ACS 4.2 for the other company using v4. ACS servers can ping each other, just having problems fining...

Resolved! ACS4.1 UCP Error ???

Hi Experts,After configuration UCP on ACS4.1, the url prompts for Username and Password but after giving login, it gives an error on next page (Attached).Please help me as i need to meet the timeline for the project. Many Thanks in advance, Regards,M...