Network Access Control

Resolved! ACS: verification of replication topology

I currently have two productive ACS appliances up and running with everything i need. I have to enable several devices in a partner network to use all the AAA features already configured with the devices in my "local" network.The problem, a direct co...

ASA LDAP Authentication AD Permissions

Does anyone know which specific permissions within Microsoft AD the username programmed into the ASA for LDAP authentication needs to have? The documentation just states that the username needs to be an administrator within active directory, but I do...

NTP Authentication

I am having trouble getting my NTP to authenticate i can get it to sync with the ntp authenticate command out of the router 2 config and then enter it back in and it continues to sync but i am not sure if it is actually using the authentication at th...

Anyconnect VPN logging

Is there a way to log when users login and out of the VPN? I know with ASDM you can see currently logged on users and other stats about the sessions in progress but I need to verify if someone says "I was logged in last night working" than in fact t...

ACS and AD Group Integration for 802.1x

Hi,Does anyone know if it is possible for the Radius Server to use the groups of AD to determine which vlan to put a user in when using 802.1x control on switch ports.RegardsMiron

Different Password Policy for Different User Groups in ACS 4.2

Hi All,Can some one provide a solution for the below requirement?We do have ACS 4.2 appliance managing firewalls of different clients. The users are common i.e, helpdesk administrators. One of the client came up with setting different password policy...

MAB with ACS 4.2 and NAP

HellowI'm using NAP's and want to use MAB as well. Right now i use the ACS Util to add MAC addresses to the right ACS Groups. But when using NAP's, I need to configure MAB under "Authentication" in the profile. Right there i also have to add all the ...

ASDM Read-Only access configuration in ACS 4.2

Hi,Is that possible to configure read-only access of ASA firewall in ACS 4.2; that too particularly for ASDM? Read-only is working fine for SSH protocol. But the customer requests for read-only access through ASDM.Plz suggest a solution with detailed...

Resolved! AAA Accounting on Routers

Hey guys,I am looking for some help in setting up my router to where it reports to my CSACS all commands executed by users. For example, I login as the user bbaggins and I make changes to an ACL configuration, is there a way for the commands I typed...

ACS v5.0 - VMWare Server 2.0

Hi, we download a ACS v5.0 for evaluation proposes and we like to know if it possible install this eval on a VMWare Server 2.0, can some help us? Thanks

Assign Static IP to VPN clients authenticated on AAA server

Hi NetProsMy objective is to assign static IP address for VPN clients. The tunnel group authentication is on a AAA LDAP server.AAA LDAP queries has been configured and tested to work.I followed the guide below, but could not get static IP assignment ...

ACS 4.2 VPN auth with Iphone

Authentication failes with message:ACS MSCHAP password is invalid.Group auth works perfect.This problem only occurs when the local ACS User has an \ in the username Domain\user123The auth works perfect with the same password and the Username user123 ...

305006: regular translation creation failed for protocol 50 src ** SOLVED *

I see several posts on this subject have been added already, but I thought I would add my 2c.I've been trying to get a remote IPsec VPN(Cisco client) connecting from the inside of our office ASA to a remote ASA. The client would connect fine, but no...

TACACS Authorization in exec mode

Hi !I try to limit available command in user mode.... it does'nt work...Exemple I had permit show command for user DSC in my ACS shared profile.When user DSC telnet my router the authentication is validate by the same ACS. On the prompt > the DSC us...

Command accounting w/ RADIUS

Not having much luck getting this to work and searching the forums here everybody seems to say it is not possible unless TACACS+ is used. Is this still the case? I see the AAA/ACCT/CMD in the debug on the local switch but the RADIUS server never re...

Network Access Control

Forum Posts

Resolved! ACS: verification of replication topology

ASA LDAP Authentication AD Permissions

NTP Authentication

Anyconnect VPN logging

ACS and AD Group Integration for 802.1x

Different Password Policy for Different User Groups in ACS 4.2

MAB with ACS 4.2 and NAP

ASDM Read-Only access configuration in ACS 4.2

Resolved! AAA Accounting on Routers

ACS v5.0 - VMWare Server 2.0

Assign Static IP to VPN clients authenticated on AAA server

ACS 4.2 VPN auth with Iphone

305006: regular translation creation failed for protocol 50 src ** SOLVED *

TACACS Authorization in exec mode

Command accounting w/ RADIUS

On-Demand Webinar: B&M Security Transformation with Cisco XDR

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

Knowledge Hub: Cisco Technology for Securing the Enterprise

Announcing Resources That Guide You to Success

3.1 hotpatch installation for fixingISE Evaluate OpenSSH CVE-2024-6387

Module Types

Failed due to Process timeout from Java error after each Agentless pos

Agentless Posture - Some questions...

Fetch Attributes with Store Procedure Type: Returns Parameter MySQL

Hardware Migration from 36xx to 37xx

Cannot run ISE URTBundle - application already installed

WS-C3560CX - And Posture Redirect

Customizing Phone Number Input in ISE 3.0 Password Recovery Form

Max password length for Cisco ISE service