Network Access Control

Ask Me Anything- ISE Integration Insights

Welcome to the Cisco Community Ask Me Anything EventWe invite you to participate in our upcoming Ask Me Anything (AMA) conversation. Please submit your questions from Thursday, April 23, 2026, through Thursday, May 7, 2026. Our experts Miguel Martine...

Resolved! CSACS-1121 NIC Teaming

Hello,Is it possible to configure a NIC team on the 1121 appliance?Regards,Thibault Mean.

accountability on Cisco Secure ACS Express 5.0

Dears,Can anyone clarify the below· Cisco Secure ACS Express 5.0 provides accountability (tracks what the user did and when they did it) ?· Do the both support all the Series of Router & switches , if not please clarify the supported...

Resolved! ACS 5.x Policy for Multiple NDG Combinations

Hi, I am trying to work out if there is a way to create policies for individual users on ACS 5.xFor example I have an v5.2 ACS with an Internal Identity Store of 100 Users. There are 15 Network Device Groups configured at the same level (n...

Combining Default ACLs with Radius assigned ACLs in L2TP

Hi there,is it possible to assign an ACL defined by Radius and at the same time the LNS combine the use of this ACL with the default ACL defined in the Virtual-Template?I've checked following instructions on this cisco document but what I can see is ...

acs 5.2 - expanding Radius Change of Authorisation (CoA) support

HiI've been testing the new 'manual' CoA support in acs 5.2.http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.2/user/guide/viewer_reporting.html#wp1132859I'd really like to be able to achieve port bounces automatically (Di...

Resolved! how to disable UDP inspection

Hello, I am doing a pre-deployment testing for our new ASA. We are using VeEX tester to generate 10G traffic. Unfortunately, this tester does not have layer 4 traffic support for 10G, all of UDP header, etc. belong to DATA and only can fill 16 bytes ...

WCS reports Radius server port 1813 up and down.

Hi all,Help me on this, please. I use Radius server 172.20.104.253 and .254 port 1812 to authenticate some wireless clients. However, the .254 keep failling, deactivate on port 1813 (this is from the log); resulting some clients can't authenticate. H...

Cisco ACS 5.1 License Question

Hi all,We have a Cisco ACS 5.1 installation consisting of two appliances. We have 2180 devices configured in Network Device Group list. However ACS 5.1 has a base license which supports 500 devices. So we have received an error saying that "Device co...

Problem with upgrading ACS 5.1 to 5.2

I upgraded my CSACS 1121 from ACS 5.1 to 5.2 following exactly the official upgrade guides. 1st step:Backing-up the acs-config using the CLI cmd "acs backup filename repository tftp_server" (filename on TFTP server = acs_hau_02_20101005-101005-0810....

ACS5.1 <> NGS (wifi guest access)

We have a problem with the Cisco Secure ACS in combination with NAC Guest Server. We want to use the NGS as a external identity source. We've configured the following on the ACS: - External radius identity source added - Identity source sequence modi...

Resolved! Cisco Secure ACS 5.1 with RSA Authentication Manager 7.1 and Active Directory groups for profiles

/* Style Definitions */ table.MsoNormalTable {mso-style-name:"Tableau Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-qformat:yes; mso-style-parent:""; mso-padding-alt:0cm...

AAA is not able to take authorization from both tacacs+ ACS and locally

Hi all,I have ACS 1120 device with version 5.0.I have configured 3 users on acs giving them privillage 15 to all and bar them with command sets.But when ACS will goes down I need to make authentication and autorization locally.So I created two sepera...

How to obtain ACS SE 4.2 Recovery CD or DVD

Dear Gurus,We have one of ACS SEs which behaves strange and definitely has some problem. I would like to reimage it, but as I understood we need Recovery CD. But I don't have it. How can I obtain it?

Cisco Access Registrar 5.0 (CAR) and LDAP implementation

Hi, how are you?.I am implementing CAR 5.o and LDAP. I tested some and it ever appears to me the following error in the CAR:password does not match09/23/2010 11:19:39.759: P79: Trace of Access-Request packet09/23/2010 11:19:39.759: P79: identifie...

Resolved! AAA Enable failing on second ACS Server

I have 2 Windows 2003 servers running ACS 4.2, authenticating with AD. I have configured TACACS+ authentication on both for my PIX 515 running version 7.24. TACACS+ authentication works fine on both. However, when I use the "aaa authentication enable...

Network Access Control

Forum Posts

Ask Me Anything- ISE Integration Insights

Resolved! CSACS-1121 NIC Teaming

accountability on Cisco Secure ACS Express 5.0

Resolved! ACS 5.x Policy for Multiple NDG Combinations

Combining Default ACLs with Radius assigned ACLs in L2TP

acs 5.2 - expanding Radius Change of Authorisation (CoA) support

Resolved! how to disable UDP inspection

WCS reports Radius server port 1813 up and down.

Cisco ACS 5.1 License Question

Problem with upgrading ACS 5.1 to 5.2

ACS5.1 <> NGS (wifi guest access)

Resolved! Cisco Secure ACS 5.1 with RSA Authentication Manager 7.1 and Active Directory groups for profiles

AAA is not able to take authorization from both tacacs+ ACS and locally

How to obtain ACS SE 4.2 Recovery CD or DVD

Cisco Access Registrar 5.0 (CAR) and LDAP implementation

Resolved! AAA Enable failing on second ACS Server

Bulk Update Fails for customAttributes - Is it supported?

UserPrincipalName not showing in ISE Log for certain user

CISCO NAM installation by iso generated by System Center

can i USE 2 CISCO ISE posture policy in same time with 2 Anti malware

High Response time for Entra ID TEAP with ISE

Certificate Services OCSP Responder nearly expired

ISE databases - which one has the endpoints?

port-based network access control for Data Center - 802.1x (yes or no)

Cisco ISE-V-3.3.X: CSCuj78705 >Schedule Report Attachment through mail

Trying to Upgrade a ISE 3.3 Ptach 9 to ISE 3.5 Patch 2 upgrade issues