Network Access Control

Schedule logs to export on ACS 5.1

I'm trying to find a way to schedule our TACACS logs to export once a day in a .csv format or whatever and send to a logging server. I'm sure that this can be done, but what are the steps?

RSA Securid and FWSM

Hi,I have a FWSM blade in a 6506 chassis. I am testing the feasability of being able to have users connect through the firewall and authenticate with an RSA ACE (Auth Manager v6.1 for WIN). I spoke to RSA and the only feedback I received was "the FWS...

Resolved! TACACS on Cisco WLC Issue

I just installed a Cisco 5508 WLC on our network. I have the Management IP in the management VLAN and on the controller I set it up "untagged". WLC has two ports connected to a Cisco 4507 switch in the port-channel config.I can ping the controller ...

Resolved! ACS log retention time

. Hi,I have ACS SE 1120 appliance running version 4.2. My customer wants to know for how long he can preserve logs in ACS. I checked various other posts they speak that " When a log file reaches 10 MB in size, ACS starts a new log file. ACS retains ...

VPN Concentrator-ACS 3.1-Radius Error "Bad request from NAS"

I have configured my VPN concentrator for Radius authentication (Cisco ACS 3.1) which uses Active Directory Database for authenticating remote vpn clients. I do not have any problems with the authentication. But in ACS console, under Reporting--Faile...

ACS 5.1 Active Directory EAP-TLS

Hello,I am trying to use ACS 5.1 with Active Directory and do 802.1X EAP-TLS for wired and wireless access. We need to map users to an identity group to assign VLANs, dACLs, etc., but having an issue mapping a certificate based user to AD attributes....

ACS 4.2 authenticating Mac Addresses

I have a couple of WLCs that I have configured to use mac authetication and using ACS 4.2 as the mac address database. Both controllers are using the same shared key for ACS. ACS has both WLCs configured. I have double checked the configurations a...

ACS 5.2 / WLC - EAP-TLS Certificate from 2 CA

Hello,I'm Newbie with ACS equipment, i'm trying to implement it to secure our WIFI environment. One wifi SSID is broadcasted on a site, I would like to authenticate WIFI client through machine certificate.The big deal is that some client computer bel...

Resolved! Integrating Cisco ACS and Cisco NAC Manager - Downloadable ACL

Hi ThereI have Cisco NAC setup in my environment. These are all working fine. The users will get themselves authenticated via Cisco NAC Manager. The Cisco NAC Manager talks to the Cisco ACS for the user database portion. These are all working fine. I...

Resolved! Disabling weak protocols in ACS 4.2?

This may be old hat by now but can someone confirm or deny that the SSH server on ACS4.2 can be configured to avoid client negotiation with weak protocols? I'd like to ensure that SSHv1 cannot be used. If it (SSHv1) can be disabled, exactly how is th...

Resolved! how should i patch acs se 4.2?

Hello people,I have cisco 1113 with acs se 4.2.0.124 with no patches installed. Should i install all patches one by one or just install the final patch?Thank you,Serik

ACS 5 EAP-TLS WLC Issue

I have a wireless environtment with Cisco WLC 5508 and some AP. I am using an ACS 5 has an external database of Active Directory. I also using a Windows Server 2003 as a Certificate Authority.I tried using PEAP(MSCHAPv2) and the client successfully a...

Internal DB replication Problem

Hi There,I have one ACS SE 1113 and another SE1112. Both devices are running 4.2.0.124. I setup both devices and had replication working properly local just yesterday. The 1113 was on one subnet and 1112 on another. It worked perfect. I moved the...

Radius AAA authentication

I couldn't find anything relevant, but apologies if it has already been answered.Is there any way of encrypting the traffic between a switch and a radius server when using radius to authenticate switch logins? As far as I can tell the traffic is pass...

decrypted tacacs-server key

Hi,does anybody know if I can use a encrypted algorith for password in order these password cannot be decrypted with any software? When I use "service password-encryption" command, password is encrypted with a Cisco proprietary weak encryption algori...

Network Access Control

Forum Posts

Schedule logs to export on ACS 5.1

RSA Securid and FWSM

Resolved! TACACS on Cisco WLC Issue

Resolved! ACS log retention time

VPN Concentrator-ACS 3.1-Radius Error "Bad request from NAS"

ACS 5.1 Active Directory EAP-TLS

ACS 4.2 authenticating Mac Addresses

ACS 5.2 / WLC - EAP-TLS Certificate from 2 CA

Resolved! Integrating Cisco ACS and Cisco NAC Manager - Downloadable ACL

Resolved! Disabling weak protocols in ACS 4.2?

Resolved! how should i patch acs se 4.2?

ACS 5 EAP-TLS WLC Issue

Internal DB replication Problem

Radius AAA authentication

decrypted tacacs-server key

ISE 3.4 Posture policy for Kaspersky endpoint Security v12.x

Bulk Update Fails for customAttributes - Is it supported?

UserPrincipalName not showing in ISE Log for certain user

CISCO NAM installation by iso generated by System Center

can i USE 2 CISCO ISE posture policy in same time with 2 Anti malware

Invalid Request error on GUI login - suspecting MnT Restriction issue

ISE VM Smartnet

ISE 3.5 requests for SMB Version 2 from Active Directory

SSL VPN FOrtigate with Cisco ISE Posture

Certificate Services OCSP Responder nearly expired