Network Access Control

Dear All,I want to shift local vpn user authentication(Cisco Router as VPN Server) to TACACS+. I have changed the required configuration but it is not working.Current Config : Local authentication.aaa new-modelaaa authentication login vpn-users local...

Hello,I have a problem trying to export logs to the Cisco ACS View from my ACS 4.2In the document http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_view/4.0/user/guide/appendixA.html Cisco states that one of the mandatory at...

Hi there.I have a Webauth setup in my switches which is working fine. I'm trying to redirect authenticated users to a specific pages, but it is not working. I'm running c2960-lanbasek9-mz.122-55.SE3.bin and I configured the following lines:ip auth-pr...

Hi,This question might actually belong under tacacs server but it's only happening with the ACE.  I've configured tacacs on the 4710 and configured the tacacs server per the documentation. If I enter the shell:<context>*Admin default-domain under the...

Dear Team,This is regarding MAC addesss based authentication. I want configure MAC address based authentication, If the perticular MAC address is stored in the RADIUS database then permit the network access otherwise block it.Please help me how to do...

I am migrating from ACS 4.2 to 5.2. In 4.2 you could assign one user to auth via Internal Database and another user to auth via Radius Token Server. I cannot find how to do this with 5.2. There is a note in the doc that states 'Identity-related attri...

I am trying to setup a Windows 7 machine to boot in Kiosk mode.  This process upon boot, should auto-log in, and run internet explorer and go to a web site.  My network guys have the MAC of this machine automatically logging in to the NAC.  However a...

Dear All:Quick question.Can you implement OOB NAC but avoid using authentication. That is:That is when a user tries to login through a specific port, that user (whoever it may be) is checked against a static port-assigned policy and IF the user (whoe...

Chaps,Does anybosy know what the 'host' setting for NTLM authentication should be?ThanksJim

Hi!I have issued the aaa authorization command tacacs on my asa, but the ACS is not letting me do any command now. I'm trying to issue the no aaa authorization command tacacs, but it does not let me. How can i rollback??Please Help meTkxMiguel

We are trying to set up ACS 5.2 in our multi-forest AD environment.  As part of our evaluation we set up an Active Directory External Identity Store to a domain (a.b.edu).  It connects properly and I can see the directory groups in the that tab when ...

Hi, We are currently evaluating a ACS 1121 running 5.2, we are trying to configure this to Authenticate eap-peap requests.Our users will be using credentials in a username@example.com format, if the server sees a request using username@anotherrealm.c...