Network Access Control

Hi,I'm just evaluating ACS 5.1 for the first time. I'm trying to use EAP-TLS for machine authentication, and use AD to look up group membership for Computer Accounts to determine authorization.The problem I'm having is that ACS is authenticating the ...

Hello,I'm working on a test rollout of 802.1x. I have a few (hopefully quick) questions that I can't seem to find in the docs...1) Is there a way to configure a switch to use two separate RADIUS servers, one for auth/authen and one for accounting?2) ...

I have one set of ASA's with users who need to hit two different identity stores on the ACS.  One group is normal users hitting Active Directory via LDAP, which currently works perfectly.  I need to add a group of users that will be application based...

We are working on installing ACS 5.0 through VPN and on an applicance. We are concerned about giving full windows domain admin rights to a generic account. What are security features are required to give the ID what it needs to authenticate through t...

/* Style Definitions */ table.MsoNormalTable {mso-style-name:"Normale Tabelle"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-parent:""; mso-padding-alt:0cm 5.4pt 0cm 5.4pt; mso-para-margin:0cm; mso-pa...

HiWe are using ACS 5.0 and enabled dot1x , the access switch are configured dot1x port based auth , we are getting error 24427 Access to Active Directory failed ,the isssue could be the ACS is not talking to AD , but the test connection was sucessful...

Hi,I don't know how to using Ldap on acs 5.0 appliance. i need configuration example document. can anyone help me??Thanks

We have a VPN and a WiFi authentications thru an ACS @ 4.x to an external database.   Using the unknown user policy pointing to an windwos database this config works at one of our sites (main site).  The main site replicates to our backup site  but d...

I have just installed the ACS 1120 appliance with ACS 5.0. It was working fine for about a week. Now however I am getting the following error message when I try to start monitoring: The monitoring and reports database is currently unavailable. Attemp...

Wondering why my ACS 5.1.0.44.3 is showing init for NTP instead of associated.acs/admin# show runclock timezone US/Eastern!ntp server 130.126.244.44acs/admin# show ntpPrimary NTP   : 130.126.244.44synchronised to local net at stratum 11   time correc...

Hi,Here's the scenario:I'm using ACS for device Administrations (using TACACS+)I'm using the internal identity store for users.I've set user passwords to expire after x number of days (when the account will then be disabled).How does the user, when h...

Hi,Most of devices use privilege level 15 for TACACS+ administration (Extreme, Cisco...), but we have devices that require privilege level 6 in order to have admin rights (Nortel Passport 8606).So i would like to know if its possible to allow differe...