Network Access Control

Hi All,While working in a 3560 all of a sudden I received the message "command authorization failed" while trying to issue certain commands.It appears I lost my priv 15 authorization.  We have seen this before, we do not have access to the ACS to tro...

I am experiencing a strange issue: During a primary ACS failure, our switches are not resorting to the backup ACS for login authentication, except for enable mode. This means we can only use the emergency local login, but once logged in we cannot ena...

Hi dearsI have a domain network with Windows Server 2003 and my clients have Windows XP or 7;I want the network authentication be through my NAC appliance (.1X).I add the NAC server to the NAC manager; enable active directory service on NAC manager a...

Hello guys,I need some help here for updating the Cisco NAC AV Definition File, before that i have question. Can i confgure cisco nac to check the Antivirus Definition file Update from AV Central Server and then check the clients for the same definit...

Hi Everyone,I have an interesting dilemma. I have a customer who used to own a 3750 with a older version of IOS. The switch he had used a three year old version of IOS which allowed him to browse to the switch IP and manage it via HTTP without enteri...

HiChanged my AD password and now i cannot get into the enable side of the cisco switches on our network (we have no routers).Looking on the logs for the ACS v4.2 I can see the following -On TACACS+ Accounting you can see the connections which have wo...

Hi forumers'Would like to check what kind of access switch is support wired 802.1x, do cisco have a hardware compatible checklist for it?Backend Radius server would be Cisco ISE. Business requirement is able to support flexauth. Current infrastructur...

Hi, I check on ISE monitoring to see the authentication status, i found out IP and device port left blank. What should i do in order i can track user is connected from wchich access switchport (all switch were join identity\ network device)Somemore, ...

HI Experts,Is there any solution or device are there to do  port blocking????i.e I will configure one policy, if anyone violate that policy, that port automatically needs to block. Then administrator only needs to enable that port.For example i will ...

Hello, I have configured ACS 5.1 and using Tacacs. I have two juniper SSG140 FW's in different subnet. Tacacs authentication is working on one SSG140 FW, but not on the other one. Tacacs configuration on both FW's are exactly the same. Both FW's have...

Hello Everybody,I installed NGS 2.0.2 for wireless guest user management and authentication. I implement webauth via webauth page on wlc deployed.One Branch with a WLC5508 version 7.0 wireless anchor controller is working on the NGS.But now I integra...