Network Access Control

i have acs 3.3 SE and i am trying to run PEAP for wireless client so i created certificate using CSR but the validate periode for certificate is one year ,,1- haw i can exptend this periode .. like 5 years 2- if i run self signe certificate (default ...

Guys,The following configuration for authentication and authorization doesn't work on 6513 alone. But same configuration is working on 100+ CAT switches. I have verified that ACS server is reachable from 6513 and entry is available for 6513 on ACS ...

I have configured ACS 4.0 and an 2003 Enterprise root CA on the same server, successfully applied the GPO to auto-enroll machines with Computer certificates, and then enabled 802.1x security on Catalyst 3750s. Note this is for wired 802.1x.If I rebo...

Hi all,I have the following configuration on my routers:aaa new-model!!aaa authentication login default local group tacacs+aaa authentication login console enableaaa authentication enable default enableaaa authorization exec default local group tacac...

Can I use Command Auth Sets in CiscoSecure to provide a subset of configuration commands? I want to give Interface commands, but not anything else.

I'm seeing posts that hit all around my questions, and based on my intereptation of the documentation it appears that there is no "shell exec" authorization available to the PIX when configured to use a TACACS+ server for authentication. Is this tru...

I am not able to logon to en mode on a router whcih is getting authenticated through an AAA mechanism.

Hello,I'm trying to create a special group of Clients to authenticate via ACS-Server without a password.Creating a user in ACS without a password leads to the error-message "Cannot set blank password for a user unless they are in a VoIP group".If I t...

Need inputs on to do telnet to the ACS from a L3 6513 switch? Am trying to telnet from 6513 from where the traffic passes through a FWSM before hitting the ACS. Am able to see hitcount on the FWSM too.

Need inputs on to do telnet to the ACS from a L3 6513 switch? Am trying to telnet from 6513 from where the traffic passes through a FWSM before hitting the ACS. Am able to see hitcount on the FWSM too.

I've setup my AAA config as follows "aaa authentication login default group tacacs+ enable". When I test config with SSH (ACS turned off)to the router I cannot login using the enable password. The same does not work when trying to connect with Con0. ...

Am doing a telnet to ACS server from L3 switch on port 2002 but it is not working.Error messages are "remote host not responding" from one host and from another L3 it's "closed by foreign host"

Does UCP support M$oft AD or just the local Cisco Secure Database. I know, kind of a simple question, but I really need to know..

I have 2 ACS Servers running on Windows 2003 SP1 and I need to replicate the users and groups from one to another.I can get the replication working and on the master it shows that replication is sucessful.On the secondary ACS Server I do see all the ...