Network Access Control

I have a setup described in Article # 43486, but with ACS appliance running 4.1Would anyone please explain pros & cons of this set-up from security point of view.Thank you

HI!I've juste configured port based authentication on switches,and it was completed successfully,I applied per users ACL using AV-PAIR for authorizing users.when verifying the switch all things are correct.I want to do the same thing to limit access ...

Network environment:- Windows 2003 with enterprise CA- Cisco ACS appliance 4.1.1.23- Cisco 1240 AG series APsWireless clients:- Windows XP SP2Brief steps taken:- Installed Enterprise CA- Created copy of web server certificate with option “Mark keys...

I am struggling in configuring the TACACS configure to allow authentication via Cisco ACS, I could able to configure for switches 2950,3750 but not with ASA & PIX, can any let me know the configs?

I am having a heck of a time backing up my ACS. I have an FTP server running on a network share. My question is under the field "Directory" what is the syntax the ACS is looking for? The bullet describing the "Directory" says: Directory. The "relativ...

Hello,two aaa radius servers configured, the authentifications works, failover works, local authentification works when no server is available (configured this way).But, when the radius servers are down, a "show aaa server" is showing that they are U...

Hi All,In my environment there are two Windows Domain - Doamin A and B. ACS is configured on member server in domain B and hence Windows Authentication for users in Domain B is working fine. However I'm unable to see domain A in Configure Domain Li...

Hi,I've put AAA config on a load of routers but now it seems that ISDN backup does not work properly. the interfaces come up but they won't properly authenticate with the ISP and get an IP address.I suspect that AAA is blocking this in some way. how ...

Hi,We encounter problem to implement NAC phase 2 with symantec.ACS is an appliance one, version 4.0We?ve installed the Symantec AV pair on the ACS : that?OK.The following softwares are installed on the client PC:- Cisco CTA : ctasetup-win-2.0.1.14.ex...

I'm doing a lab using Cisco ACS 4.1 LEAP Proxy RADIUS External User Databaser, and works fine but I don't understand why. So, I don't know if it's a stable solution.I have the following scenario:WinXP SP2 PEAPv0 (EAP-MSCHAPv2) |vCisco 3640802.1...

We currently have ACS 2.6 and a CSACS-.41-WINUP-K9 pack which includes the media for CSACS 4.1.1 and 3.3. I understatnd CSACS 2.6 must be upgraded to ACS 3.3 before upgrading to ACS 4.1.1.However, is it possible to upgrade from ACS 2.6 to 3.3 to 4.1....

Currently we have a ASA5505 and it's allowing all traffic out to the web. How do I block web traffic at night and weekends. Would a AAA rule be suitable? if so, how do I go about it?Thanks for any helpRich

Hello,I have ACS 4.1 installed on a Win2003 server. When I try to generate a self-signed certificate to be able to use https, then java applet stop to function. Pls advice what could be the problem? does anyone know?ACS: Release 4.1(1) Build 23JRE v1...

Hi, We have a problem with our ACS engines. We have 2 ACS Engines and the problem is we cannot disable it as a DHCP client. When its ethernet connection goes down, its IP address resets to 0.0.0.0. The static IP address that we set on it does not re...