Network Access Control

I use ACS 4.1 on a Windows server that looks up unknown users in Active Directory. Users in AD are in various groups and ACS has these groups mapped to the ACS groups so that users are granted appropriate access to their needs. This has worked well...

I have the primary Radius server working just fine but when I stop the primary Radius server the backup radius server does not work, it fails over to the local password. I have included the config, does anybody have any idea why it won't fail over t...

I am trying to configure ASA VPN using Windows AD authentication. When the VPN client tries to connect the VPN, it receives Reason 413: user authentication failed. If I use test aaa authentication command, I receive "ERROR: Authentication Rejected: C...

I have installed ACS ver 4.1.1 trial downloaded from cisco web sites. I have configure 802.1x machine authentication using self generated certificate with unknown user policy configure for windows database authentication. I can authenticate user via ...

I have been using ACS to authenticate VPN users from our ASA5540 for several months with no problems. I map an ACS group "VPN-Users" to a group in AD. I have now created a 2nd group in ACS, "Wireless-PEAP", for wireless PEAP authentication. This g...

I noticed that Cisco Secure ACS 4.1.4 changed the System>Logging to not show Log File Management. It appears everything is now one big log with ability to filter, etc. What happened to the Log File Management?Customer is used to ACS 3.x and ability ...

On the TACACS+ Administration Report, there is a reason column. Does anyone know how I would use this?I'm looking for a solution to this problem. We have multiple scripts that log into our routers for various reasons. Instead of having to create 7...

Hi,I have to develop a custom application that sets/gets TACACS+ information for a particular user profile. I was able to set values in "TACACS+ Enable Control" form and "TACACS+ Enable Password" form using action code 105.But I am not able to set "U...

Hi all, I wonder if 1 username can restrict to only 1 session in VPN client.Because i found that 1 username can authenticate and establish more than 1 session at one time and it's against my company rules.I use ASA as the VPN remote termination and A...

Hi,I was wondering if anyone could possibly tell me the usual cause of the following error :Windows workstation not allowedIt keeps coming up for one of our new wireless workstation even though it sometimes authenticates fine.thanks,Matt

How many applinaces doesCisco Secure ACS Solution Engine 4.1 1113 support?

I am installing ACS for Windows 4.x on a new server. My server team built the server and they installed Java but it is not in the default location (e:\java). So when I try to access to add a local admin (first time login) from the server it is not ...

Hi!,In my environment i implemented AAA for logging into switches, routers, asa etc through ACS which is being configured TACACS+.I have set different privilege levels like readonly, readwrite etc into ACS. There are working fine when i try to login...

Hi everyone,I need your help !I have ACS Solution Engine (ACSE) 3.3.I have encountered the following symptom.1:User "ktaka" and "kina" have already existed/registered in ACSE local database.I tried to change the password for both "ktaka" and "kina" b...