Network Access Control

Resolved! Denying AAA Clients to a specific user group in ACS v4.1

Using 4.1 is there a "simple" method of simply denying a usergroup the ability to even login to specific AAA clients? Customer has a telephony group that they want to allow them to telnet and check into all the voice routers, but no other routers, t...

Resolved! I can not use the same ip address for three NDGs ACS.!

Hello. Install ACS 4.2 Build 124 Patch 13, I created three NDGs, My server has the IP 192.168.1.10, adding the same three NDGs server gives me this error:An overlapping IP range 192.168.1.10 conflicts have been detected with ACS entry of 192.168.1.10...

AAA Authentication ACS and Router

Hello All,I have an ACS with AAA clients (routers) added as TACACS+ (Cisco IOS). And as such I am able to log on to the devices with my username and password which is stored locally on the ACS. However anyone from any group can log in. How can I rest...

ACS Error messages

Hello -I am receiving the following two ACS failed attempts logs for wireless clients connecting to WLAN using WPA1/PEAP."NAS duplicated authentication attempt""EAP-TLS or PEAP authentication failed during SSL handshake"I am seeing these messages for...

Resolved! Shared Secret Mismatch in DB Replication

Implementing Database Replication in two Cisco ACS SE 1113, and the ACS Version is 4.2.0.124. It failed with an error message "Shared Scret Mismatch", however it is same on both boxes. Any idea what would be the problem?

Controlling VPN access

Hi Guys,We have a Cisco ASA 5510 and ACS 4.1 configured and the users can VPN into ASA and are authenticated by the ACS which is mapped to Active Directory and all works well.I now need to know how to configure VPN access to allow certain groups to h...

ACS Install 4.2 fails -

Hello..I'm trying to install ACS 4.2 in windows server 2003 enterprise spanish. The installer comes to 99%, and then aborts. Event viewer reports on some Dr.Watson error, application error in _INS5576._MP. if install the trial version ACS all work fi...

ACS upgrade: replication fails - shared secret mismatch?

Hi All,Just did an upgrade from ACS 4.1.4.13 patch 17 to 4.1.4.13 patch 18. No problems on patch 17 using replication. After upgrade everything seemed to work fine until I checked internal database replication. Apparently replication now fails... The...

acs user database

Can I limit the number that can use a specific user entry to 1 at a time in acs

Resolved! ACS 3.2(2) Build 5 replication issue

Hello All,There are two ACS servers one sits on the inside of an ASA 5510 at the head office and the other sits on the inside of an ASA 5510 at the hot site. Those ASA 5510s were put in to replace two PIX 515Es and the claim is that since the ASAs we...

Has anyone seen this before?

Hi Gents,One of my ACS 1113 is refusing to install a digital certificate. The process is correct as it works with another box. It reads the certificate, asks to restart CiscoSecure Agent to install the new one and it's gone. I can repeat the process ...

Resolved! AAA Users and Passwords

Hi All,I'm currently studying for my CCNA Security and have been toying around with AAA. I have an 851w with advsecurity 12.4 IOS.What I have noticed, and find interesting is that I seem to have one user configured locally, but it appears to have two...

Router/Switch config for AAA(ACS4.2)

Dear All,I have few questions of ACS4.2.I have got 2 Liecences for Two ACS 4.2 servers and i have done the installation on two servers. my questions hereis during the installation it has never asked for liecansing key. so then whats the use of liec...

AAA Logging and Generating CSV's daily

I am trying to set my ACS up to generate new CSV's for each day. I went to Cisco's website and it says that this is configured under "System Configuration", "Logging", and then clicking on the CSV option and choosing "Every day" "Every Week" and so ...

AAA with FWSM issue

My AAA configuration works fine on the FWSM (4.0) when I session (ssh) directly into it. However when I try to session into the slot from the switch (switch is AAA already), it only recognizes the local username. But then I don't have authorization...

Network Access Control

Forum Posts

Resolved! Denying AAA Clients to a specific user group in ACS v4.1

Resolved! I can not use the same ip address for three NDGs ACS.!

AAA Authentication ACS and Router

ACS Error messages

Resolved! Shared Secret Mismatch in DB Replication

Controlling VPN access

ACS Install 4.2 fails -

ACS upgrade: replication fails - shared secret mismatch?

acs user database

Resolved! ACS 3.2(2) Build 5 replication issue

Has anyone seen this before?

Resolved! AAA Users and Passwords

Router/Switch config for AAA(ACS4.2)

AAA Logging and Generating CSV's daily

AAA with FWSM issue

NetFlow Probe Profiling – Missing IP and Port in ISE Context Visibili

Default Route SGT

PX Grid Connector and Service NOW

ISE Posture: secure client stops posture synchronization

Posture Script Condition–Fails to Connect When SHA-256 Fingerprint Add

AAA Radius Server Group Deadtime for a Single Server Group

Patching ISE 3.3 patch-6 to patch-7 via CLI

ISE 3.3 system certificate update

ISE Polcy Question

Downtime for certificate renewal - ISE 3.2