Network Access Control

Hi,Would it be possible to pass Group Name as Custom Attribute to Sourcefire? Actually I want Sourcefire to authorize only user of one group as Administrator, and I am thinking to use Group Name as Custom Attribute.Thanks and Regards,Ahmed Shahzad.

We would like to be able to differentiate between VPN connections from iPhones and VPN connections from software clients on PCs.We currently have 1 common Groupname for VPN connections to our ASA pair, so I assumed I could create a new Groupname for ...

Hello,I added external authentication for NAC through AD by ldap." authentication against backend Ative Directory"I followed the procedure as per documentation but agents cant login now. CAS version is 4.1.3 and CCA doest show provider other then loc...

I am in the process of building an ACS 5.1 Virtual Appliance.  I was reading through the documentation and one of the requirements are for 500GB of disk space??  Is that true?? Why do you need that much disk space??

Hi All,I am working on Cisco Secure ACS 1120 appliance running with 5.0 software version. I have encountered problems during "Authorization" process.I have one Cisco 3560 switch which will be administered by different employees. My intention is to gr...

hello,i'm trying to authenticate users from ASA 5520 to FREERADIUS on DebianDoes anyone succed in ? what's the way to ?thanks

Dear Sirs,1- I want to deploy a cisco nac solution.I have purchased one nac manager and one nac server. An external aaa server is it mandatory in order to deploy the solution ?2- Nac deployed in inband mode is it compatible with non cisco switches ? ...

Hi all,We recently put up a new Windows 2003 Active Directory domain controller to replace a de-commissioned Windows 2000 DC.  When my VPN users try to authenticate to it using Kerberos, they are getting rejected with a pre-authentication failed erro...

I have setup AAA with LDAP on my Windows 2003 AD servers. Normal authentication seems to be working fine, however if I set a user to require a password change, I get a Malformed Password error in the logs.I am using this with the Clientless SSL porta...

Hi guys,I have cisco 3750 switch on the site and users with in the site are using WYSE terminals to access their session from DC and CITRIX servers from data center.Router on MPLS Cloude >> CISCO 3750 Switches>> Usersis there a way or authentications...

Hi folks,One of our clients wants to migrate from their Fortinet appliance (Fortigate 200A) to Cisco ASA and their main stumbling points is that they want to keep their current Internet access policy, namely control access to internet for various use...

All,We had a 2 MS Windows 2003 Servers that was running 4.0. We managed to upgrade the DR server to 4.2 without any issues, but when we tried to upgrade the PR server, we got CRYPTO errors. We found the answer to this problem here by deleting the fil...

Hi,I have set up an Active Directory database as an external resource via Generic LDAP option (I didnt set up via windows database option as my infrastructure does not allow me this). I am trying to authenticate with no luck. The report database cont...