Network Access Control

I have a problem for command authorization in ACS 4.1.I will explain you by an example:I added a command in ACS asinterface & in the arguement: deny gigabitethernetrest of all commands i have permitted.I am not able to execute the command interface g...

Hi expert,I have a problem with the integration between Cisco Secure ACS 4.2 with SUN Java System Directory (LDAP). During the integration, I noticed that user failed to authenticate against LDAP via Cisco Secure ACS. The error message is "Authentica...

Hi from BarcelonaI'm trying to setup Cisco ACS to use PEAP but before that I need to configure a CA on the server. I'm following the procedure found in http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a0080545a...

I have 3 user groups with diff access levels and only one NDG.If I create a separate device group I get an error stating that i cannot use the same AAA server address mentioned in the first group.Can 2 network groups can be created for same AAA?

I have a test Linux box running TAC_Plus and a test switch for AAA. The switch is accessing the TACACS+ server just fine. We change the passwords every time someone is released and we have 250+ devices on our network so a local database would be very...

I have an ACS 4.1 appliance, I have already configured ACS in order to work with certificate. I got the certificate from ACS, I already installed it as the installation guide says . Additionally I configured the card's controller in my PC in order t...

Hi,I'm in the process of staging an upgrade from ACS 3.2(3) to 4.1(4.13).The process to complete the upgrade is ACS 3.2(3) -> 3.3(3) -> 4.1(1) -> 4.1.(4.13).The upgrade steps 3.2(3) -> 3.3(3) and from 3.3(3) to 4.1(1) work reliably, but I am seeing i...

Hi,We get the following error when try to login to Cisco Security Manager. we have tried all options to make it work but went in vein. ""ForbiddenYou don't have permission to access /cwhp/LiaisonServlet on this server.Additionally, a 403 Forbidden er...

Scenario: ASA at remote office, ACS at head office. ASA terminates an IPSec tunnel at the remote office. Can AAA be configured so it can be used to authenticate console/ASDM users on the remote site's firewall ? ACS server would need to be accessed...

I have configured MAC filtering in a ACS ,previously I configured user group to be validated by ACS. Authentication by user is fine but when I add the option of additionally filter by MAC it works fine at the beginnig but after some trying allows al...

I am trying to set up ACS to use AD for authentication. I have followed the instructions Cisco gives out, but my test account still fails when I try to log into any network device. I've looked in the ACS logs and it keeps showing "CS user unknown"....