Network Access Control

Hi!We have a setup with ASA and ACS 5.0 and are trying to send Radius attribute Class (25) back from the ACS to the ASA to assign Group-policy.The problem we have is that the ACS responds with somekind of session-id in as value for the class-attribut...

I have 2 ACS boxes (Cisco Secure ACS 4.0 X solution engine 1113 appliance).Is there any way i can replicate the configuration of both the boxes.is there any way or we manually need to do config replication (Both ACS reachable to each other as well as...

I am trying to find solution for some type of settings in ACS.Imagine for instance real situation as follows:There is group "A" with 100 users. I need for 20 of them assign the access to devices in the group "B". I can't find any easy possibility how...

Hi all I integrated ACS with CSM and added all the security devices into ACS as client devices.But after integration with with ACS only few devices are shown in the CSM when i logged in as super admin.for all other users (system admin,network operato...

We currently have login on-failure configured, but have found the user information is blank for Telnet sessions. Whereas SSH failed logins DO show the user information. We are running IOS 12.4(22)T. Is this expected or possibly a configuration settin...

Hi, I am implementing 802.1x in my network where I have some avaya switches & some cisco switches. My First question is that how can I implement it on avaya switches.Second how can I configure a cisco switch port on which another cisco switch is conn...

Hi,I have a 1841 router and I'm trying to see the user name when he fails to login to the router; I have the following configuration and when I do a show log; I see the failed attempts but do not see the user who failed:login block-for 60 attempts 3 ...

HI All, any body has tried configuraing pvlans with 802.1x..both can work together or not ? what about protected mode, can it work with dot1x. my requirement is to block communication between guest laptops if they are from different company but if th...

I want to restrict CLI access to our ASA 5510 to one Active Directory group. Currently the ASA authenticates against our LDAP/AD server, and anyone in the organization can log into the ASA using HyperTerminal (enable password is another matter, howe...

Can I use SSL VPN IP Address Assignment from IAS radius server?it can be done with acs server.are there some differ from the acs and IAS?