Network Access Control

authentication with Active Directory

Hi!I'm using PEAP authentication with the Active Directory. I have Cisco Secure ACS 4 and Cisco Aironet 1230 APs. The users use their Windows account to log in, but when I change the password in the AD the password doesnt change in the Secure. Anybod...

Using radius in switch authentication

I have configured aaa command "aaa authentication login default group radius none" to cisco switch. If i shutdown windows IAS server where i have configure client(cisco switch) i can get in to switch because of that "none" condition. But if our IAS s...

Values not saved in "Global Authentication Setup" page

Hi,I searched a bit in this forum but I couldn't find a related topic. So here is my problem.We are trying to deploy a small NAC lab environment. We use NAC Appliance v4.1.Now the problem is, that I like to set the values for PEAP and EAP-TLS in the ...

Syntax for ACS Proxy Ditribution prefix

Can someone tell me what syntax I must use to successfully create a RADIUS Proxy prefix ?I have got my own domain (mychild.mydomain.local).All non-local users must be forwarded to another RADIUS server on the internet.In ACS 3.3.3 I created a charact...

ACS and remote agent on Windows Domain controller

I have several ACS 4.0 servers which are authenticating wireless users with PEAP and machine accounts. Everything works fine except that about once every few weeks we have to restart the remote agent on the domain controllers - not at the same time....

Configuring IOS authentication with Windows IAS

I've successfully configured both a test switch (Catalyst 3560) and Windows Server 2003 IAS to allow RADIUS authentication on the switch. The problem I'm having is that the switch will apparently allow anyone who can authenticate through IAS to acces...

AAA authentication error

hi,I have installed ACS 4.1 and is using a 3560 Switch,the only configuration on ACS is the "AAA Client" which is my Switch host name and its ip address. and the secrect key is the same as the AAA server sercet key.the comunication betweent he server...

Clear ACS Logs

Is it possible to clear the logs (Failed attempts, RADIUS Accounting, ...) on an ACS Appliancen v. 3.3.4 ?

No TACACS+ Administration Logging on ACS

I can get a csv file created for a TACACS+ Administration log/report [configured in Interface Logging of the ACS] but that log file is is empty. Help states that aaa accounting commands start-stop TACACS+ must appear in the access server or router co...

Resolved! ACS Authentication in another (trusted) domain bij ACS Agent

HiI have got two domains. Domain A is top level domain. Domain B is Child domain from Domain A.The ACS Agents are installed on two DC's in Domain A.Authentication of clients in Domain A is ok.Authentication of clients in Domain B is a problem.I creat...

Resolved! Database Replication ACS SE 3.3.3

HellowI've got some problems with database replication with 2 ACS SE 3.3.3On every ACS I configured the other ACS as ACS Server.On primary I moved the secondary ACS to replication partner.On secondary, I did Not move Primary ACS to replication partne...

Dynamic User Group Role for ASA 8 ACS 4 External Windows DB

1. I've successfully got a Win2003 AD user to authenticate to the ASA via an ACS but the default group settings the dynamic user becomes part of don't get transfered to the user. How do I get the user to adopt the group settings?2. ASDM recommends na...

CAT 3560 with IOS 12.2(44) SE & AAA

I just loaded one of my 3560-24PS with the latest IOS from Cisco 12.2(44) SE with advip services.What I notice on these switches is when I put in my AAA commands then I lose console access to my switch... it does not give me the option of entering a ...

ACS/EAP-TLS/Internal DB issue

I want to authenticate dial-up users with ACS internal DB using certificates which are stored on smart cards using EAP-TLS method.I use Microsoft Standalone CA to enroll certificates and configure ACS.But I cannot authenticate clients. ACS Logs says ...

Can ACS 3.2 support Win 2003 R2 Active Directory?

Hi All,As I know, ACS can integrate into Windows AD and use the AD user database to authenticate users. But I cannot find out any document which informs that ACS 3.2 can support Windows 2003 R2 Active Directory.Do anyone know this?Thank you very much...

Network Access Control

Forum Posts

authentication with Active Directory

Using radius in switch authentication

Values not saved in "Global Authentication Setup" page

Syntax for ACS Proxy Ditribution prefix

ACS and remote agent on Windows Domain controller

Configuring IOS authentication with Windows IAS

AAA authentication error

Clear ACS Logs

No TACACS+ Administration Logging on ACS

Resolved! ACS Authentication in another (trusted) domain bij ACS Agent

Resolved! Database Replication ACS SE 3.3.3

Dynamic User Group Role for ASA 8 ACS 4 External Windows DB

CAT 3560 with IOS 12.2(44) SE & AAA

ACS/EAP-TLS/Internal DB issue

Can ACS 3.2 support Win 2003 R2 Active Directory?

Context Visibility application and hardware visibility gone

ISE - EAP TLS Machine / User Auth Problem

pxgrid invoke getEndpointByMacAddress api return 204

pxGrid Certificate-Based Authentication - 503 Service Unavailable

ISE Posture – Long boot and no network access

Can PSNs in a deployment use different EAP Auth cert/CA chains?

ISE upgrade - small deployment - VM and SMS 3615 server

802.1x recommendations

Cisco ISE subscription is not available in AWS cloud?

Best practice for controlling inter-VLAN access