Network Access Control

Resolved! ACS 4.1 Evaluation Copy...

Hi, Can any one provide me with a link on the Cisco website where I can download the 90-day evaluation copy of Cisco Secure ACS? I can't seem to locate it on the download page.Thanks.

'Could not find user' with EAP-TLS in ACS

Hi all,we are running ACS 4.2(1) Build 15 on a Win2003 member server and use the ACS for EAP-TLS with certificates (Microsoft-PKI) for WLAN authentication (WLC 4402, 6.0 and 4.2). We are using both machine and user authentication.Sometimes machine au...

IOS 12.0(5.1) + Radius

Hi Guys,I'm trying to configure the RADIUS Authentication in IOS 12.0(5.1). However, even though I can configure the aaa new-model and use local username and passwords, I seem unable to find the necessary "radius-server' commands. Is it that RADIUS S...

ACS 5.1 Can't connect to web interface

Hello,i have installed the the ACS 5.1 on our VMware Server 2. After the basic configuration, i should be able to connect to the web interface.if i enter the correct address i get an 404 HTML status error code.So I'm trying to solve the problem.i cal...

Restricted Command List on Switches using ACS 5.1

AllI am working on setting up a restricted command set on ACS 5.1 so that users can access swicthes only at designated privilege levels and hence only get access to certain commands as defined on the ACS servers.So far I have set up a Shell Profile w...

ACS 5.1 Authenticating IOS Devices using AD

I'm evaluating ACS 5.1 for a future deployment. I'm trying to get authentication working for IOS devices using AD groups. Ideally I would like to be able to say this AD group has access to level 15 when logging into IOS devices and another group has ...

802.1x: Can I use MAB to authenticate a phone on the voice VLAN?

Hi experts,I'm trying to configure my 3750 switch to authenticate phones and laptops separately on Voice and data vlan. Here is my config:aaa group server radius FreeRadius server 172.17.1.1 auth-port 1812 acct-port 1813!aaa authentication dot1x defa...

ACS 5.0 report: user's ip address information not available

Hi,I am using ACS 5.0 for TACACS+ Authentication and Accounting.I am facing an issue related to reports.When I click the detail for any failed / passed authentication entry on AAA Protocol > TACACS+ Authentication page, The remote address (under user...

ACS 5.1: "acs backup" vs. "backup"

Hi All,From the ACS 5.1 CLI (5.1.0.44.4 to be exact)....Can someone please explain the difference between "acs backup" and normal "backup"? (other than one backing up the ADE-OS data?)The ACS command reference does not explain the difference clearly....

Resolved! Patch Level in ACS Migration: 4.1.4 Bundle 13 --> 5.1

I am migrating ACS 1111 appliances currently running ACS version 4.1.4 Build 13, to ACS 1121 appliances with ACS version 5.1.In the migration procedure, it is stated that:"The migration machine must be a Windows platform that runs the same version of...

Resolved! ACS 5.0 and AD groups

Hi,I have MS 2003 AD connected to ACS 5.0. All the domain users are getting authenticated and able to access the network devices (switch / router / firewall).ACS is being used for user authentication and command accounting using TACACS+, for device a...

Resolved! ACS v5.2 - Unable to add enumeration attribute to compound condition

Hi, I have created an Internal User attribute and made the attribute type Enumeration so that only certain values can be selected. I am trying to apply this attribute to a compound condition. However, when I select the value of the enumerator for...

local aaa privileges

I want to be able to set upread only access to one of our cisco routers while letting the other users still be able to get into enable and config mode.My current config ( without the read only access user) is as followsaaa new-modelaaa authentication...

Aironet RADIUS Authentication

Morning Guys,I'm in the process of migrating all my switches and routers to a RADIUS based Solution. Can I also include my Aironet APs to authenticate administrators against the remote RADIUS as oppose to the local RADIUS?ThanksNik

Cisco ACS and RSA Tokens !!!

Hi Folks,I am currently deploying the Cisco ACS (ACS 4.2.1.15) with RSA Tokens.Please let me know the scenario or best practices for this kind of delpoyement.1) My Cisco ACS Server (Windows Based) is currently intergrated with MS AD.2) I want to Use ...

Network Access Control

Forum Posts

Resolved! ACS 4.1 Evaluation Copy...

'Could not find user' with EAP-TLS in ACS

IOS 12.0(5.1) + Radius

ACS 5.1 Can't connect to web interface

Restricted Command List on Switches using ACS 5.1

ACS 5.1 Authenticating IOS Devices using AD

802.1x: Can I use MAB to authenticate a phone on the voice VLAN?

ACS 5.0 report: user's ip address information not available

ACS 5.1: "acs backup" vs. "backup"

Resolved! Patch Level in ACS Migration: 4.1.4 Bundle 13 --> 5.1

Resolved! ACS 5.0 and AD groups

Resolved! ACS v5.2 - Unable to add enumeration attribute to compound condition

local aaa privileges

Aironet RADIUS Authentication

Cisco ACS and RSA Tokens !!!

Basic ISE policy behavior

ciaco ISE 2.7 to 3.1 but it's using internal CA for authentication

Best way to upgrade Compliance Module without killing ISE

CSCwn25013 - ISE 3.2 P7: Patch install breaks db-reset

Cisco ISE, no SXP-bindings from session

Cisco ISE 3.4p3 bug that replaces hidden values with asterisks?

ISE Integration with Entra-joined Devices/Users

CIsco ISE 802.1x EAP-TLS authentication with Entra ID

Cisco ISE License Assignment

Query Regarding Endpoint Visibility via Cisco ISE