Network Access Control

I'm looking for a solution for starting with 802.1X for wired and wireless network in a live environment. During the migration I have to turn on port based authentication. But at that moment, the machine must have a valid user / computer certificate....

Is there a way to determine how many active wireless users are on the network by checking ACS? Currently our users need to re-authenticate periodically (about every 15 minutes), however, ACS shows no logged in users. There should at least be one --...

Hello Everyone,I am haivng a problem with getting an ASA 5505 to suthenticate directly against a w2k domain. There is no radius server involved. I am using Kerberos. We are getting an errors message back stating that the clocks on the ASA and teh...

we have the vpn users authenticate using RSA token , & ACS configured with RADIUS token server as the in the selected databases for unknown user policy ,the problem is when we updraded from ACS 4 to Release 4.2(0) Build 124 a problem happened , so...

I would want to give all privilege in configuration mode except one command : "no router eigrp" : How to write this ?privilege exec level 15 no router????thx

Hi,Basically the problem is that I am working with old routers, checked already on feature navigator an the following commands are not supported on the router to communicate to a TACACS server that resides on a vrf:----------------------------------...

I am looking for a similar configuration for my Cisco PIX & ASA to configure with Cisco ACS, with the below said commands I could able track what command a user has entered on the switches/router. Any help is highly appreciated for me to configure in...

Hi all! I'm having problem with configuration AAA authorization. I'm not authenticate from outside, output message "user none". But inside I can authenticate normally. Following configuration not working: aaa new-modelaaa authentication login default...

HiIs it true? TACACS+ will not work with 802.1x port authentication because EAP is not supported in TACACS+, Where to find the documents about Tacacs+ doesn't support EAP?Regards, Thanks.

Hi folks,I regularly get these messages from my ACS box, which is (among other things) supporting 802.1x / PEAP authentication for my wireless users.Note that the misspelling of "authentication" is intentional - e.g. the typo is in the syslog coming ...

We are in the process of setting up AAA Accounting to a Radius server from our switches,wireless controller and VPN. We are trying to figure out what the logic, or interval is that the devices send 'Interim Updates' to the ACS. Right now the interva...

hello,Could anyone give me some hints on how to configure accounting, for ssh/telnet access on a router, that integrate the following infos :start and stope times, duration of the session, packet and byte counts.Thank you.regards

Hi,I've configured two ACS servers with replication but i noticed that when the replication takes place it overwrites the AAA servers table configured in the network configuration of the secondary server and that makes the next replication to fail be...

Wired users.When PC boots up and tries to perform "computer authentication" with ACS and then Win2003 AD, I get the following error:"External DB user invalid or bad password"Thanks