Network Access Control

Can I use ssh with TACACS? I would like the authentication to be fully encrypted and I believe Tacacs send the clear text as oppose to ssh. If someone can point me to the a doc or a sampe config for Cisco routers and switches I would appreciated it.T...

I'm trying to enable SSH-only access to a Cisco 4006 running CAT OS 8.4(11)GLX with local authentication. SSH works fine, but telnet access is still available. How can I disable telnet access?

Hello,I am installed TACACS+ on a Windows Server I defined two users to test the configuration. On the PIX firewall I have a VPN configured for PPTP. I want the PIX to authenticate the user for the VPN against the TACACS+ server. I also want the PIX ...

We currently have version 4.0 ACS.When defining a Network device such as a core switch on the lan is there a way to get the tacacs server to use the loopback address of the switch instead of the ip address on the connection.Otherwise this will mean h...

Below are the devices I used in my network.ACS Server:ver 3.3Active Directory: Win2000 Server SP4 installed with cisco remote agent.Switch:Cat2950 12.1(EA)1aClient Workstation: WinXP Pro SP2I've enable dot1x on the switch and everythings works fine f...

Hi,I?m trying to deploy EAP-TLS authentication method on ACS v4.0 for my local wireless users; really I stuck with the certificate issue and need your assistance to understand the required procedures to accomplish the task.As mentioned on the ACS con...

Hi, we have radius as default authentication/authorization for Remote Access users on the VPN3k, now i want to create a WEBVPN group and users that use INTERNAL authentication instead of the Radius. I moved to the TOP LIST of SERVERS the INTERNAL aut...

We've had ACS in and working for our Wireless network for the past 8 weeks, then on friday we started having problems with user authentication. As far as we can check nothing has changed on the ACS or WLC we think it's a change within AD thats caused...

I have ACS SE v4.0.1 Build 44. I'm using the remote agent to authenticate users against AD. I have a test laptop connecting to a 6500 running CatOS 8.4.5.I can get the laptop to authenticate sometimes but it's intermittent. I can't find a pattern ...

Hi, Does anyone use 802.1x in combination with NAC framework and see 'invalid protocol data' messages in ACS (4.01)?We see this appear when we run it in parallel, when we deactivate the NAC policy in ACS or shut down the CTA services om the client PC...

Good Afternoon,I have a pair of ACS 4.0 Solution Engines that use TACACS+ for AAA with network equipment and authenticate wireless users to AD with the remote agents via Radius. I have a VPN 3030 that currently talks to a separate ACS running 3.3 whi...

Hi,When this feature is enabled, the switch checks the status of the configured RADIUS servers whenever the switch tries to authenticate a host connected to a critical port. If a server is available, the switch can authenticate the host. However, if ...

Laptop - Compaq 2006AMD Sempron ProcessorWindows XP Home Edition SP2Cisco VPN Client 4.8.01.0300VPN starts fine...CONNECTS to work server fine...BUT...crashes XP (Blue Screen of Death) after AUTHENTICATION STEP (after I enter the USER-NAME/PASSWORD a...

I have couple of questions:1. Does anyone know if Cisco supports Cisco Secure ACS software 4.0 on non-cisco hardware (I would like to install it on WMware)?2. When password rotation is configured on ACS, is it possible to use ssh to change it? When I...