Network Access Control

I'm attempting to use webauth as a fallback method for 802.1x for wired clients. I've configured the switchport as recommened in the documentation. Here's the snipped for the interface:interface FastEthernet0/4switchport access vlan 141switchport mod...

Hi,I am configuring our Cisco devices to authenticate logins against a RADIUS server. For this I am using Windows Network Protection Server (formally IAS).I have a configured a Network Policy that works successfully against one router. I want to appl...

In ACS 5.2, when i add custom a shell profile to a rule in an authorization policy (used in a TACAS access service) it seems to be skipped.I can see the rule is hit because the hitcount number increases (it hits because of the group id), and when i s...

I have seen similar references to this issue, but no concrete solutions.  My new ACS appears to join my domain with little or no issues, however, when I go to list the groups nothing is ever listed.Running ACS as a vm.I have set the ntp server on the...

I am trying to get our ACS to authenticate login sessions to our PIX and ASA devices. Can anyone provide a sample configuration that will push all access to these devices to the ACS for TACACS? THE ACS has been configured and is ready for authenticat...

Hi,I have Cisco Access Registrar (CAR) which is being used to offer dial-vpn services to enterprise customers. Now i need to propose the solution where user would have the option to change his password. This option is available when using Cisco Secur...

Hi All,we have one cisco ACS appliance 4.1.1.23, User authentication unexpected stopped and if we see the AAA reports its blank when the authentication service stopped.from the log files i found:The auth.log file may have output similar to this durin...

Hi,I have a scenario where my customer has an ACS 5.2 and couple WLCs. the customer has also a openldap database and needs to do dynamic vlan assignement for his wireless user against this database. I know that for Active directory it works, please a...

Hi,I'm trying to configure OpenLDAP server as a AAA authentication group. Below is the configuration. aaa group server ldap aaaldap server aaaldapldap server aaaldap ipv4 10.10.1.5 bind authenticate root-dn cn=admin,dc=test,dc=com password 7 08205949...

Hi,I have cisco ACS 5.2 and external identity source as RSA secure ID.Currently when the RSA user login to AAA Network devices, User id & passcode prompt coming after giving the credential its going to user exec mode.Then after "enable" command again...

Hello,We would like to backup our configuration of cisco ASA 5550.We would like to know the attribut to give privilege 15 for the shell command in Radius.We tried - cisco-avpair : shell:priv-lvl=15- cisco-avpair : shell:Admin*Admin in the radius conf...