Network Access Control

Hi all,I would like to authenticate users connecting to VPN (Remote-Access) by RADIUS and EAP-TLS (certificates). Is it possible?I tried to do it and created lab in GNS and configured FreeRADIUS to use EAP-TLS but it doesn't work...My router config:!...

I have installed ACS 5.2 and configured it to join the Company's Domain as an External database with Active directory 2008.I'm facing a problem that the user once authenticated using it's active directory account it's cached in the ACS and take a whi...

When I try to SSH from ACS 5.2 CLI to my SFTP server I get :Unable to negotiate a key exchange method.On the SFTP server (Tectia) I have the encryption configured with aes256 and hmac-sha1.Any help appreciated.Thanks,G

We are setting up a new wireless network with multiple SSID's.  We plan on having an internal network, a guest network, and a personal devices network.  The questions is how do authenticate against multiple policies on the same NPS server?  Our curre...

Hello,Is there a way to authenticate a windows computer in ACS 5.2 for 802.1x only with a certificate.The Computer is from a different active directory than the one that is configured in ACS.I tried importing the cert into "external indentity Stores"...

Hi All, can any one  has done the implementation of 802.1x with alcatel phone where pc will be behind the phone and cisco switch ports are configured as trunk. Trunk native vlan is data vlan for pc and trunk carrying voice vlan.when trunk mode is ena...

Hi all,my problem:how to straight away enter priv EXEC mode when authenticated for asr1002?? Using XR12000, it can be done but asr1002 have to input enable passwd...my username for asr1002 have privilege 15 and i want to enter priv EXEC mode straight...

Just starting to implement MAB and was wondering if there is a way to check for MAC addresss that have not been online in over 6 months.  There are only so man MACs that the ACS can hold, and I dont want systems that have been removed from the compan...

I have a new Cisco Secure ACS 5.2 on a VM. We want to use it to for administrative access to our Cisco equipment  with TACACS+. I am trying to map user permissions to different groups of devices based on active directory group membership, however it ...

I have AAA accounting setup and working on my ASA 5510 running  8.4(1). I can account specific service based on TCP ports, etc. I want to do accounting for VPN use sessions for when users connect and disconnect from the VPN in the 5510. I found sever...

Hi,I have client that have a quite number of Cisco devices (routers, switches, ASAs) and want me to configure login using AD authentication. Should I use Radius or Kerberos? I'll appreciate if someone let me know what are cons and pros of each protoc...