Network Access Control

HiI have VPN clients coming into a router and getting x-authenticated using TACACS/ACS 3.0. Till now I was using local group authetication. My requirement is to only allow specific user to authenticate on vpn and not all users in ACS database. I beli...

Hi,I have configured authentication and authorization on PIX6.3.5, I use Cisco ACS4.1, but I do not have executed commands in "TACACS administration" log.Can you help me?ThanksPeter

one of our ASAs is having problems authenticating against our tacacs server. We can run the test authentication feature fine and the ASA can ping the server. However when I try to authenticate I see this in the log:4 Aug 28 2007 09:30:31 409023 At...

Hello,I have some PIX 501 systems for the remote access and a cisco acs 3.2 appliance for the user authentification of our wlan enviroment. In the user settings on the acs i can give a special ip address to a user. Can I use this address to assign a ...

I configured AAA authorization in the my firewall but it works only for local username/password. PIX version 7.2(2) and ACS-SE 4.1.Following are the steps I did.1. Configure AAA on PIX (attached)2. Add PIX as AAA Client in ACS and selected as TACACS ...

we have done a gre encrypted tunnel between 2 sites (2x3800 router). everything was ok but not with a certain application which need to authenticate to the other site.anyone could figure out what went wrong or what could be there in that particular a...

we have a ACS 4.1 install with 5 acs servers, 25 remote switches and over 800 xp users all doing certificate based machine authentication that work perfectly fine. We are also using a guest vlan in our sites to auth fail a guest user onto the guest v...

Friday I upgraded my CiscoSecure ACS from version 3.3 to 4.1. Upgrade seemed to go fine. Today I come in to find out that no one is getting authenticated. I have APs in WLSE configed with WDS that are not authenticating. I also have AP's not in W...

Hi,Currently my ACS is being integrated with AD and all the users can access my IOS devices (configured AAA). I only need one group in my AD to access my IOS devices and another group to use VPN access or any other authentications.Can anyone tell me ...

Hi,I would like to know what are the configurations required in Cisco ACS for authorization.I have done the foll configurations in the switch.aaa authorization config-commandsaaa authorization exec default group tacacs+ localradius-server host 10.240...

Dear SirI have an ACS and I have many switches in the network. I used to secure the telnet andenable access to these switches with tacacas+ authentication protocol. so the username andpassword is taken form the ACS internal database. Also the enable ...

Hi,Please can someone tell me how to bypass the boot password which the appliance ask for when the appliance is rebooted.Thanks.

I have routers configured with 2 bvi interfaces for dlsw.When I configure NAS setting with 2 ip address, sometime the AAA authentication failed to prompt for user authentication.Should I used ip tacacs source-interface?If I configure only one, if tha...

I am not able to authenticate the host connecting to the AP whcih is getting authenticating aganst RADIUS. Looks like shared secret key issue. Can any one help out? Log message says,(%DOT11-7-AUTH_FAILED: Station 0013.02c4.02d7 Authentication failed