Network Access Control

ACS 5.2 Command Authorization

We are using command authorization on our ios devices with cisco secure acs 5.2 We have local accounts defined on our gear in the event that the ACS server is unavailable. However, when we test this, we are able to login to the device, but any comm...

ACS 5.1 - 30 Day policy session condition

Does anyone know of a way to create a generic 30day condition that can be used in an authorisation rule. I know this can be done on an individual basis with start/end dates.for example:I'd like to give a user access for thirty days starting now - so...

Issues with Window7 and dot1x authentication

I am having an issue with authenticating Windows7 PC's with ACS 5.2. I am running ACS version 5.2.026 and using active directory to authenticate against. The problem I am having is that when I see the ACS failure the username coming in from the Windo...

Cisco ACS 4.2 and Radius authentication?

Hi, I have a Cisco ACS 4.2 installed and using it to authenticate users that log on to switches using TACACS+, when I use local password database, everything is working. But if i try to use external database authentication using a windows 2008 radius...

ACS 5.1 and Server 2008 CA

Will ACS 5.1 bind a CA signed cert from a 2008 CA or will we have to upgrade ACS to 5.2? Any word on when 5.3 will be released?

ACS 5.0 IP Pools

Hi AllI came to know that there is no ip pools in the cisco acs 5.0Can anybody provide an alternative method to achieve this.Such as how to define the dhcp server and a dhcp pool details to a user or a groupthanking youmuralee

Resolved! How to uninstall a license in ACS 5.1

Hi everyone,We have two ACS 5.1 appliances. By mistake we install the same license in both devices and when we tried to register the secondary ACS to the primary ACS it says the the license is already in used in the deployment. Furthermore, it is not...

NAC authentication SSO crashed after update fixes in Win Server2K3

NAC 4.7(2) authentication SSO with Active Directory on WinServer2k3 crashed after update the next fixes:KB2478971 KERBEROS WEAK HASHING ALGORITHMSThis update addresses the vulnerabilities by preventing the use of weak hashing algorithms in b...

Resolved! Tacacs is show the UPD?

Hi,I want to know about the UPD port is open when I do below activity?Router#sh run | in tacacstacacs-server host 1.1.1.1tacacs-server directed-requesttacacs-server key ciscoRouter#sh control-plane host open-portsActive internet connections (servers ...

ACS 5.x AD mixed vs native mode

we are turning off Mixed Mode in our AD environment, a change from which I'm told there is no retreat. Are there any configuration changes that need to be checked to support a 'Native' only AD environment.

Resolved! Cisco IOS-XR with ACS

Hello, my question is if you have to configure the Cisco IOS-XR enabled router (it is a 12k series by-the-by) differently on the ACS side or is it added like any other normal router.

after changing ACS AD domain unable to display groups in new AD domain

Hi,I changed my ACS 5.2.0.26 from a joined active directory to a new active directory domain, everything is ok for the test because i can see in ACS :Joined to Domain:.tp.group.local Connectivity Status:CONNECTEDit means that ACS is connected to AD.N...

Resolved! ACS 5.1 Accounting

HiDoes anyone know how to alter the retention / purge period fot the accounting logs in ACS 5.1.Many ThanksJason

ACS - LDAP TCP Keepalive (v5.2)

reposting as with subject including v5.2:--------HelloI have an ACS 4.2.1.15 patch 3 and Novell Netware LDAP Server separated by a Firewall. The Firewall's default tcp session timeout is 3600 seconds.When no LDAP-Request is made for over one hour, th...

ACS 5.1 Tacacs+ Nexus 5000

Hello,Am having somes problems changing the role of my AD validated user on my nexus.Users are validated against AD then am trying to push AVpair attribut to change the user role to network-admin.All setting are getting assign to my user ( access pro...

Network Access Control

Forum Posts

ACS 5.2 Command Authorization

ACS 5.1 - 30 Day policy session condition

Issues with Window7 and dot1x authentication

Cisco ACS 4.2 and Radius authentication?

ACS 5.1 and Server 2008 CA

ACS 5.0 IP Pools

Resolved! How to uninstall a license in ACS 5.1

NAC authentication SSO crashed after update fixes in Win Server2K3

Resolved! Tacacs is show the UPD?

ACS 5.x AD mixed vs native mode

Resolved! Cisco IOS-XR with ACS

after changing ACS AD domain unable to display groups in new AD domain

Resolved! ACS 5.1 Accounting

ACS - LDAP TCP Keepalive (v5.2)

ACS 5.1 Tacacs+ Nexus 5000

Bulk Update Fails for customAttributes - Is it supported?

UserPrincipalName not showing in ISE Log for certain user

CISCO NAM installation by iso generated by System Center

can i USE 2 CISCO ISE posture policy in same time with 2 Anti malware

High Response time for Entra ID TEAP with ISE

ISE VM Smartnet

ISE 3.5 requests for SMB Version 2 from Active Directory

SSL VPN FOrtigate with Cisco ISE Posture

Certificate Services OCSP Responder nearly expired

ISE databases - which one has the endpoints?