Network Access Control

Resolved! Pix, ASA and RSA SecureID

Dear all,I am replacing our old Pix 515 for a new ASA 5520.On the Pix (running ios 6.x) we configured the pix to use a RSA SecurID appliance as an AAA server to authenticate remote VPN clients. In order to do this we configure an AAA group that use ...

Resolved! local username and password if ACS server fails

Hello,I have every router and switch setup for login authentication via the ACS server. I have used these 12 lines below and it is working fine. Every engineer has their own account.aaa new-modelaaa authentication login default group tacacs+ enable...

External DB user invalid or bad password

Hi,I have problem with Cisco ACS 4.0 "Windows" with core 4500 switch "cat4500-ENTSERVICESK9-M 12.2" the problem shows only on one device "x.x.x.x" the problem is " Authen failed-------badcred------External DB user invalid or bad password" i can see...

failed to login

Hi Foksi have strange issue,i m connected to my acs using browser for mangment purpose , i m entering the correct username and password but i receive failed to login,why is that?how to fix this issue

CISCO ACS 5.2 RADIUS Network device authentication

Hello,I am trying to integrate Cisco ACS 5.2 in a network to do device authentication of switches for administrators.I am not sure if Cisco ACS 5.2 support RADIUS protocol to do device authentication. In the configuration of the Cisco ACS 5.2 I can o...

use ACS to lock AD user account if to many auth attempts

I have setup ACS 5.2 in my lab and have it completely funcation with Downloadable ACLs, Dynamic VLANs and the identity store on the backend is Active Directory. I need it to lock a user account in AD if there are to many auth attempts. I have gone in...

Resolved! guest-vlan; catalyst 2960

Hello,I would like to configure a guest-vlan and restricted-vlan on a 2960 switch, but I can not.The IOS version (obtained trough: show version) is:Switch Ports Model SW Version SW Image------ ----- ----- --------...

802.1X dyanmic VLAN assignment DHCP issue (Vista client)

I am labbing dynamic VLAN assignment and have run into a small problem. The switchport is succesfully changing to the new VLAN, but my test PC seems to get an IP address in the native data VLAN before being moved to the new dynamic assigned VLAN. S...

Resolved! ACS 5.1 mab reauthentication in every 1 mintues

Hello,I am using Cisco ACS 5.1. I would like to authenticate my ip phones with mab (Avaya phones) and the commputers with dot1x.Everything works fine except that the phones which are successfully authenticated with mab tries to authenticate againand ...

Resolved! acs 3.3 download

Hi All , I have a requirement to upgrade my ACS databse from 3.3 to 4.2.1.15 , Because i need to use this database on our acs appliance which is running 4.2.1.15 . I have backed up acs 3.3 databse , I trying to install acs 3.3 to stand a...

ACS 5.2 Identity groups - restrict device access

I have ACS 5.2 running as a VM. I'm AD, then local authentication successfully for device access, but I want to define ACS user groups to restrict login. I don;t see any way to do this. If I use AD groups, they don;t show up as selection options on...

ssl certificate upload on acs appliance

Hi All , I have SSL certificate issued to my acs appliance by a CA authority , I need to upload this SSL certificate on acs applliance , I have followed below step to upload the certificate from ftp server .1.Choose System Configuration ...

Resolved! Migrating the existing ssl certificate from win 3.2 acs to 4.2 acs appliance

Hi,We have the acs server which has the ssl certficate(certifcate authority) running in acs 3.2 windows version for eap-tls enduser authentication.We want the same to be migrated to acs 4.2(appliance) application. I have tried in different ways to pu...

ACS 5.1 How to Ignore all host auth requests

I am using ACS5.1 connected to WLC (v7.x) and frequently see host auth requests in the ACS logs. I am not interested in seeing host auth requests at all. Is there anyway just to ignore these.The issue is that these will always fail. If I enable th...

ACS 5.2 failed authenticate mab with the same voice and data vlan.

Hi friend,I have a question its posible to authenticate an cisco phone and PC with the same vlan(voice and data)when i do this configuratión , the phone and pc dont work. The phone display registering and never finished.interface FastEthernet0/5 swit...

Network Access Control

Forum Posts

Resolved! Pix, ASA and RSA SecureID

Resolved! local username and password if ACS server fails

External DB user invalid or bad password

failed to login

CISCO ACS 5.2 RADIUS Network device authentication

use ACS to lock AD user account if to many auth attempts

Resolved! guest-vlan; catalyst 2960

802.1X dyanmic VLAN assignment DHCP issue (Vista client)

Resolved! ACS 5.1 mab reauthentication in every 1 mintues

Resolved! acs 3.3 download

ACS 5.2 Identity groups - restrict device access

ssl certificate upload on acs appliance

Resolved! Migrating the existing ssl certificate from win 3.2 acs to 4.2 acs appliance

ACS 5.1 How to Ignore all host auth requests

ACS 5.2 failed authenticate mab with the same voice and data vlan.

Bulk Update Fails for customAttributes - Is it supported?

UserPrincipalName not showing in ISE Log for certain user

CISCO NAM installation by iso generated by System Center

can i USE 2 CISCO ISE posture policy in same time with 2 Anti malware

High Response time for Entra ID TEAP with ISE

Invalid Request error on GUI login - suspecting MnT Restriction issue

ISE VM Smartnet

ISE 3.5 requests for SMB Version 2 from Active Directory

SSL VPN FOrtigate with Cisco ISE Posture

Certificate Services OCSP Responder nearly expired