Network Access Control

Dear All,I have few questions of ACS4.2.I have got 2 Liecences for Two ACS 4.2 servers and i have done the installation on two servers. my questions hereis during the installation it has never asked for liecansing key. so then whats the use of liec...

I am trying to set my ACS up to generate new CSV's for each day. I went to Cisco's website and it says that this is configured under "System Configuration", "Logging", and then clicking on the CSV option and choosing "Every day" "Every Week" and so ...

My AAA configuration works fine on the FWSM (4.0) when I session (ssh) directly into it. However when I try to session into the slot from the switch (switch is AAA already), it only recognizes the local username. But then I don't have authorization...

We configured 802.1x for the wired network. Some pc's and printers do not work. This is the message on the switch:DOT1X-5-FAIL: Authentication failed for client (Unknown MAC)on interface fa0/1All pc's work with digital certificates and EAP-TLS on the...

Hi all,I couldn't find any details how to use RADIUS Vendor-Specific Attributes (VSA)26 , cisco av-pair but only some samples like: cisco-avpair= "shell:priv-lvl=15" Is there a FULL list of these attributes with correct syntax explained for IOS 12.4 ...

Hi,PEAP authentication fails with the error "EAP-TLS or PEAP authentication failed during SSL handshake".In our wireless setup we have configured a SSID for WPA/WPA2 authentication with dot1x.We are using ACS4.2 with Active directory for user and cer...

I have just installed ACS 4.2 on two VMware hosts. I've configured database replication but it won't work. The error message is "shared secret mismatch". This error message occurs if a NAT device is in the path (which it isn't in this case) or if ...

Hi,I am trying to set up an external Active Directory database connection with Cisco ACS. I have a large forest and 3 tier domains within. I am planning to set up an external database via Generic LDAP option. The reason for doing it this way as i can...

Hi all,I'm having a problem when wireless controllers try to authenticate wireless clients by ACS 5.0.I've added the ACS as a Radius server and configured in the Wlan that the clients try to associate.Seem that the WC is unable contact the ACS, in t...

Dear allI have an ACS cd 4.1(1) build 23. I need to know how many different ACS can I installed. Each ACS differe from the other. If I can install many different ACS, can I do a replication between these different ACSs or the replication candone only...

I had configured everything for certificate authentication EAP-TLS in Windows 2003 AD with enterprise CA. After logging a machine to domain I receive a certificate for computer, then setup XP SP3 to reauthenticate perion 120 sec (by Microsoft KB). I ...

hi, I would appreciate to receive some configuration steps on ACS to fulfill the following requirement and hope you can help me.ACS GroupsNetadmin - need telnet/ssh/vpn/wirelesswireless - only wireless authenticationvpn - only vpn authenticaitonI nee...

Hi allI have installed ACS on VMWARE and it has two interfaces in two subnets but tacacs is working on one of it. So my question is Can I run tacacs on both interfaces? if not How can change running interface.RegardsMarcin

Hello!Could you help me resolve some problem.Cisco 7206VXR (NPE400) processor (revision A), Version 12.2(31)SB11Configuration from the router:aaa new-modelaaa authentication login default group tacacs+ localaaa authentication login local-admin-access...