Network Access Control

In ACS 5.2, when i add custom a shell profile to a rule in an authorization policy (used in a TACAS access service) it seems to be skipped.I can see the rule is hit because the hitcount number increases (it hits because of the group id), and when i s...

I have seen similar references to this issue, but no concrete solutions.  My new ACS appears to join my domain with little or no issues, however, when I go to list the groups nothing is ever listed.Running ACS as a vm.I have set the ntp server on the...

I am trying to get our ACS to authenticate login sessions to our PIX and ASA devices. Can anyone provide a sample configuration that will push all access to these devices to the ACS for TACACS? THE ACS has been configured and is ready for authenticat...

Hi,I have Cisco Access Registrar (CAR) which is being used to offer dial-vpn services to enterprise customers. Now i need to propose the solution where user would have the option to change his password. This option is available when using Cisco Secur...

Hi All,we have one cisco ACS appliance 4.1.1.23, User authentication unexpected stopped and if we see the AAA reports its blank when the authentication service stopped.from the log files i found:The auth.log file may have output similar to this durin...

Hi,I have a scenario where my customer has an ACS 5.2 and couple WLCs. the customer has also a openldap database and needs to do dynamic vlan assignement for his wireless user against this database. I know that for Active directory it works, please a...

Hi,I'm trying to configure OpenLDAP server as a AAA authentication group. Below is the configuration. aaa group server ldap aaaldap server aaaldapldap server aaaldap ipv4 10.10.1.5 bind authenticate root-dn cn=admin,dc=test,dc=com password 7 08205949...

Hi,I have cisco ACS 5.2 and external identity source as RSA secure ID.Currently when the RSA user login to AAA Network devices, User id & passcode prompt coming after giving the credential its going to user exec mode.Then after "enable" command again...

Hello,We would like to backup our configuration of cisco ASA 5550.We would like to know the attribut to give privilege 15 for the shell command in Radius.We tried - cisco-avpair : shell:priv-lvl=15- cisco-avpair : shell:Admin*Admin in the radius con...

Hello!I need to enter the ACS Configuration mode with command acs-config, but there can be just 6 sessions due to the documentation" Up to six users can access the ACS Configuration mode at a time; six users equal six sessions. When one of the six se...

DeaR All,    I Have a requirement to migrate from ipv4 to ipv6, I have checked the scalability of all the devices for this migration except ACS 1113 Solution Engine, Version 4.2.  I couldnt reach the proper documentation to check its support for ipv6...

Hello to everyone!Why my asa5520 brings out:sh curpriv Username : enable_15Current privilege level : 15Current Mode/s : P_PRIVwhile i am logging in with my username which is XXXX. And in my ACS accounting logs I cannot see which user did what.thanks ...

Hello Security Experts, I need your help for AAA configuration.I'm Planning to implement AAA security on my Router...Could you please anyone tell me how to implement & what is a requirement & also pls. provide me document for my reference. I have 2 u...

Hi there.We plan to use machine certificates on our notebooks with Windows Vista. Our authenticating server is Cisco ACS 5.1. To access the wireless network we want to use the machine certificate of the notebook and a verification of the correspondin...