Network Access Control

acs 4.2 :- router# test aaa group tacacs+ uid pwd .... works but not when authenticating

I have setup ACS 4.2 and when I runrouter# test aaa group tacacs+ myuser mypasswd [ legacy | new-code] Both options work fineBut when I try and login, over telnet, the request reaches the aaa server, but returns fail !My commands are :-...

Resolved! ACS 4.2 eval :- License upload required ?

I have just downloaded the eval version of ACS 4.2In 5.1, you need to obtain a trial licese.Is that true for 4.2 as well ?I could install it and see for myself :-) , but I dont currently have the required Win server,so while I am waiting for that, I ...

Resolved! Can't browse the Active Directory from ACS 5.1

Hi,we just joined our ACS 5.1 to our Active Directory 2003, the system seems correctly joined on the ACS we have as connectivity status: joined and if we try it with the test button we get "connection succeded", on the AD tool we notice that an compu...

Resolved! ACS 5.1 and AD Integration

I have just installed ACS 5.1 as a VM instance to provide TACACS AAA. So far things are working fine with local authentication and I now wish to have my users authenticate via AD. Looking at the user guide on page 8-39 it looks like I need to creat...

Downloadable ACL on Cisco IOS router (from ACS) ?

Hi,(I am a bit new to some of the IOS Security features)Is it possible to "download" and ACL from TACACS+ (ACS 5.1) OR RADIUS AV Pairs ? I know that the lists can be configured on ACS, but how are they applied on a IOS router ?I have read about...

Resolved! ACS Administrator rights using Active Directory groups

Good afternoon,We need to be able to utilize administrative accounts for our ACS appliance that reside in an Active Directory group, if possible. If this cannot be done, what other more secure options would we be able to utilize (RADIUS authenticati...

ACS Cert

Hello,I am having a hard time getting my cert to work right on the ACS for PEAP. I have acs 4.2 se. I have a 3rd party .pem. certificate I have loaded it into the install acs cert as the cert file and private key. I have also loaded into the authori...

Authorization failure in GSS

Hi all,I have configured a Cisco GSS for AAA using TACACS.The Cisco GSS is version 3.0(2) and the ACS server is 4.2(0) build 124I have a configuration storage application which connects to devices and download the configuration. This is working for a...

AAA Authentication

Hi,I Have ASA 5520 In My Network, Here From Inside Users Have To Access The Terminal Server Which Is Located In DMZ. If I Want To Access The Terminal Server From Inside Users It Has To Authenticate By AAA Local Database.

Cannot retrieve AD groups in ACS 5.1

Hi, I'm evaluating ACS 5.1 with latest patch before a rollout but I'm having problems trying to retrieve groups from the AD. The ACS status is CONNECTED to the AD, and ACS appears as a computer in the AD, but if I try doing a search for groups I get ...

ACS 5.1 AD Groups not displayed

Hi,I´ve succesfully joined the ACS 5.1 Server to a Windows 2003 Domain. But no AD Groups are displayed in the selection box.Any suggestion?Thank You!GreetingsRouven

Resolved! Reg: Tacacs configuration

Hi All,I m trying to set up AAA authentication of around 300 routers through Cisco TACACS,i installed acs4.2 on a windows 2003 server and put following AAA commands in the router,tacacs server host and key mentioned on trialrouteraaa new-model!!aaa a...

Copy configuration from ACS 4.1 to 5.1?

HiI need to copy all configuration (Users, Groups, AAA clients, you name it) from an existing ACS 4.1 appliance to a newly installed ACS 5.1 appliance. Is there a way to do this without having to manually configure all items in the 5.1-GUI?Export/Im...

dot1x with authentication open

I am building a test setup with open authentication and i am trying to get the theory right.First the scenario for which we are going to use dot1x with open authentication:We want to deploy dot1x throughout our network, which includes a number of use...

Radius Authentication options on ASA or PIX

I have found various articles that state completely different things about what can and cannot be done using Radius authentication on a PIX or ASA. Can someone provide me with a definitive answer on what my options are or point me to a good whitepape...

Network Access Control

Forum Posts

acs 4.2 :- router# test aaa group tacacs+ uid pwd .... works but not when authenticating

Resolved! ACS 4.2 eval :- License upload required ?

Resolved! Can't browse the Active Directory from ACS 5.1

Resolved! ACS 5.1 and AD Integration

Downloadable ACL on Cisco IOS router (from ACS) ?

Resolved! ACS Administrator rights using Active Directory groups

ACS Cert

Authorization failure in GSS

AAA Authentication

Cannot retrieve AD groups in ACS 5.1

ACS 5.1 AD Groups not displayed

Resolved! Reg: Tacacs configuration

Copy configuration from ACS 4.1 to 5.1?

dot1x with authentication open

Radius Authentication options on ASA or PIX

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

SMS Gateway Integration with Text Anywhere

Module Types

Failed due to Process timeout from Java error after each Agentless pos

Agentless Posture - Some questions...

Fetch Attributes with Store Procedure Type: Returns Parameter MySQL

WS-C3560CX - And Posture Redirect

Customizing Phone Number Input in ISE 3.0 Password Recovery Form

Max password length for Cisco ISE service

Firepower 1010 Port Forward Struggle

cisco ISE TACACS User authentication setting