Network Access Control

When I try to SSH from ACS 5.2 CLI to my SFTP server I get :Unable to negotiate a key exchange method.On the SFTP server (Tectia) I have the encryption configured with aes256 and hmac-sha1.Any help appreciated.Thanks,G

We are setting up a new wireless network with multiple SSID's.  We plan on having an internal network, a guest network, and a personal devices network.  The questions is how do authenticate against multiple policies on the same NPS server?  Our curre...

Hello,Is there a way to authenticate a windows computer in ACS 5.2 for 802.1x only with a certificate.The Computer is from a different active directory than the one that is configured in ACS.I tried importing the cert into "external indentity Stores"...

Hi All, can any one  has done the implementation of 802.1x with alcatel phone where pc will be behind the phone and cisco switch ports are configured as trunk. Trunk native vlan is data vlan for pc and trunk carrying voice vlan.when trunk mode is ena...

Hi all,my problem:how to straight away enter priv EXEC mode when authenticated for asr1002?? Using XR12000, it can be done but asr1002 have to input enable passwd...my username for asr1002 have privilege 15 and i want to enter priv EXEC mode straight...

Just starting to implement MAB and was wondering if there is a way to check for MAC addresss that have not been online in over 6 months.  There are only so man MACs that the ACS can hold, and I dont want systems that have been removed from the compan...

I have a new Cisco Secure ACS 5.2 on a VM. We want to use it to for administrative access to our Cisco equipment  with TACACS+. I am trying to map user permissions to different groups of devices based on active directory group membership, however it ...

I have AAA accounting setup and working on my ASA 5510 running  8.4(1). I can account specific service based on TCP ports, etc. I want to do accounting for VPN use sessions for when users connect and disconnect from the VPN in the 5510. I found sever...

Hi,I have client that have a quite number of Cisco devices (routers, switches, ASAs) and want me to configure login using AD authentication. Should I use Radius or Kerberos? I'll appreciate if someone let me know what are cons and pros of each protoc...

Hi,I have configured the cisco 2960 switch with AAA & the radius server is free radius. I am able to login into the switch when radius server is working.But when radius server is not reachable, in that particular condition the switch doesn't move to ...