Network Access Control

McAfee Antivirus automatic remediation

Hello All,I'm having an issue with McAfee Antivirus remediation. I'm using Cisco NAC 4.8.2 and it seems that automatic remediation is not working.Could someone help?Is there a webpage where we can check which AV can do automatic remediation?

ACS 4.2 and Aruba Mobility Controller

Hi,I have recently installed an Aruba Mobility Controller and trying to authenticate WLAN traffic off to the ACS server, but using a valid 802.1x account the authentication process is failing.Has anyone experienced problems?Which version of RADIUS sh...

TACACS Nexus 5548 Authorization

I am having an issue with authorization on the Nexus 5548. Note: The tacacs configuration has and still works correctly with all non-Nexus gear.Authentication succeeds, and initiatial authorization passes. However, all sh and config commands fail, th...

TACACS Issue "Command Authorization Failed"

Hi All,While working in a 3560 all of a sudden I received the message "command authorization failed" while trying to issue certain commands.It appears I lost my priv 15 authorization. We have seen this before, we do not have access to the ACS to tro...

Backup ACS server not used by switch.

I am experiencing a strange issue: During a primary ACS failure, our switches are not resorting to the backup ACS for login authentication, except for enable mode. This means we can only use the emergency local login, but once logged in we cannot ena...

NAC Agent login problem

Hi dearsI have a domain network with Windows Server 2003 and my clients have Windows XP or 7;I want the network authentication be through my NAC appliance (.1X).I add the NAC server to the NAC manager; enable active directory service on NAC manager a...

Resolved! ACS 5.2 VM ESXi 4 to ESXi5

Hi. My customer as decided to virtualized Servers in ESXi5, the problem is the ACS5.2 was installaed in ESXi4, Is there any issue related in migrating the ACS 5.2 installed in ESXi4 to ESXi5?Any procedure to follow?thanksAntero Vasconcelos

Resolved! Cisco ASA and downlodable acl problem

HI,allCan somebody shed some light on how to configure ACS for downloading user base acl.We have used TACCAS for remote access user authentication.Do I required any config on ASA or i have to just configure Policy element /authorisation profile and ...

Help cisco NAC, AV Definition Update.

Hello guys,I need some help here for updating the Cisco NAC AV Definition File, before that i have question. Can i confgure cisco nac to check the Antivirus Definition file Update from AV Central Server and then check the clients for the same definit...

ip http server (with no authentication)

Hi Everyone,I have an interesting dilemma. I have a customer who used to own a 3750 with a older version of IOS. The switch he had used a three year old version of IOS which allowed him to browse to the switch IP and manage it via HTTP without enteri...

Changed my AD password now cant get into enable !!!

HiChanged my AD password and now i cannot get into the enable side of the cisco switches on our network (we have no routers).Looking on the logs for the ACS v4.2 I can see the following -On TACACS+ Accounting you can see the connections which have wo...

Wired 802.1x hardware compatible checklist

Hi forumers'Would like to check what kind of access switch is support wired 802.1x, do cisco have a hardware compatible checklist for it?Backend Radius server would be Cisco ISE. Business requirement is able to support flexauth. Current infrastructur...

Resolved! ACS 5.1 has stopped Authentication logs after reboot!

Hi All, I have saved the running configuration to startup first and rebooted the ACS 5.1. Since then it has stopped Authentication logs, though I can login to the network devices using Tacacs login, but I am not getting Tacacs authentication...

Resolved! AD Authentication for Client VPN

Hi,I am using Cisco 1812 as EZVPN server. I want to use Active directory for VPN user authentication. I am trying from couple of days but no success.With ASA, i am able to authenticate against AD, but not with IOS router. Below are my configurationsa...

How to know where users connected to the network?

Hi, I check on ISE monitoring to see the authentication status, i found out IP and device port left blank. What should i do in order i can track user is connected from wchich access switchport (all switch were join identity\ network device)Somemore, ...

Network Access Control

Forum Posts

McAfee Antivirus automatic remediation

ACS 4.2 and Aruba Mobility Controller

TACACS Nexus 5548 Authorization

TACACS Issue "Command Authorization Failed"

Backup ACS server not used by switch.

NAC Agent login problem

Resolved! ACS 5.2 VM ESXi 4 to ESXi5

Resolved! Cisco ASA and downlodable acl problem

Help cisco NAC, AV Definition Update.

ip http server (with no authentication)

Changed my AD password now cant get into enable !!!

Wired 802.1x hardware compatible checklist

Resolved! ACS 5.1 has stopped Authentication logs after reboot!

Resolved! AD Authentication for Client VPN

How to know where users connected to the network?

PassiveID problems

CSCwp21394 - wired nads failing CTS with error

CSCvv82262 - ISE 3.3 menu missing

ISE Machine / User Authentication Questions

secure LDAP not working via ISE DACL

ISE Posture State Synchronization - Real World Feedback

Cisco Guest Portal is not working when Internet is not working

ISE Patch Question

Post 3.4, Patch 4, replication stop with PAN and CLI failed to connect

ISE failed to join Active Directory: Error_Access_Denied, How to Fix?