Network Access Control

Dear Sir,I have completed the registration of  the following Cisco nac server:Appliance: NAC3310-500-K9, NAC Appliance  3310 Server -max 500 usersI have already added the manager license and i am able to get access to the web console.I received a lic...

Hi !we plan to deploy AAA function on our production network as requested by our policy (and by any good pratice) I had to plan a roll back plan is case of problem.  After deployed command on our Core Catalyst switch in lab and successfully authentic...

I am setting privileges in Cisco Secure ACS Version 5.1.0.44.In the command sets from the ACS server, I denied few commands as can be seen in the attached screenshot and selected 'Permit any command that is not in the table below'.I am unable to see ...

Hi, I have a really big issue and would be nice if someone could help me. I’m trying to install a certificate on an ACS 4.1 Win 2003 server, under Sys Config > ACS cert setup> Install ACS Certificate, I need to put the complete path of the certificat...

LDAP servers sit behind Load Balancers.Primary and Secondary LDAP servers are defined as Load Balancer VIPs.ACS not failing over to secondary LDAP server (VIP) ???When disabling connection to primary LDAP servers, still able to make connection on por...

1. I reboot a switch and start a constant ping to the switch.2. The ping begins to receive replies.3.  I try to log into the switch and it fails.  If you try and console into the device, it says authentication fails three times and goes back to the p...

brand new to the TACACS+ Cisco 1120 world...Trying to build from scratch, so please bare with me.i'm stepping through the very lengthy Users guide and am at a point of creating an Internal Host.  Is this necessary?  I'm viewing the term "Hosts" as an...

Hi. How can I configure password policies on ASC1120 running v5.0 and using internal database? For example for VPN clients how can I enforce a password expiration time, etc.

Hi,I have remote office having router and VPN to my mainoffice.TACACS server sitting at mainofficeWhen I am try integration my remote office router with TACACS(sitting at main office). its not working.My question is can i integrate remore office rout...

Hello,We use RANCID to monitor changes to all our Cisco gear. Once an hour RANCID does a diff on the last running-config. If it detects a change, it notifies me of the changes on the router/switch. This works great, but it does not record WHO made th...

We're trying to implement RSA SecurID for our VPN user as well as access to our routers/switches/firewalls.  RSA supports RADIUS, but not TACACS.So RSA support has shown me how to setup a radius profile in their software that sends a class attribute,...

Hello,I have lost administration in my switch (Cisco Catalyst 6000 Multilayer Switch Feature Card MSFC2) configuring "aaa" It seems due to an ACL and I have no user local configured only line vty password. It has a RW snmp community. Do yo know if is...

Hi Friends,Please help me on this issue. I am unable to replicate between both the server. If you have any best practice guide, pls forward it to me.Thx