Network Access Control

I have configured aaa on all switches in the network, however when I log into the switch from the console port my privillege was 1. From the debug I notice there was no authorization messages sent to radius server

Hi there!I want to enter Enable-Mode directly after loggin in on the switch.At the moment I've reduced my aaa config to a very basic setup:------------------------------------aaa group server tacacs+ TACSERV server192.168.0.1tacacs-server host 192.1...

I have a problem where the some of the device hostnames configured in our ACS have a space after the hostname. This prevents the device from being edited or deleted. Although the device shows in the device listing when I try to edit it I get the mes...

I try to configure a Cisco Secure ACS V3.0 (WINDOWS 2000 & NT)Originally 2 TACACS server were running, tacacsb as a backup (secondary) for tacacsa.tacacsb were removed to another IP subnet where it is supposed to run as standalone.I have changed the ...

HiI have VPN clients coming into a router and getting x-authenticated using TACACS/ACS 3.0. Till now I was using local group authetication. My requirement is to only allow specific user to authenticate on vpn and not all users in ACS database. I beli...

Hi,I have configured authentication and authorization on PIX6.3.5, I use Cisco ACS4.1, but I do not have executed commands in "TACACS administration" log.Can you help me?ThanksPeter

one of our ASAs is having problems authenticating against our tacacs server. We can run the test authentication feature fine and the ASA can ping the server. However when I try to authenticate I see this in the log:4 Aug 28 2007 09:30:31 409023 At...

Hello,I have some PIX 501 systems for the remote access and a cisco acs 3.2 appliance for the user authentification of our wlan enviroment. In the user settings on the acs i can give a special ip address to a user. Can I use this address to assign a ...

I configured AAA authorization in the my firewall but it works only for local username/password. PIX version 7.2(2) and ACS-SE 4.1.Following are the steps I did.1. Configure AAA on PIX (attached)2. Add PIX as AAA Client in ACS and selected as TACACS ...

we have done a gre encrypted tunnel between 2 sites (2x3800 router). everything was ok but not with a certain application which need to authenticate to the other site.anyone could figure out what went wrong or what could be there in that particular a...

we have a ACS 4.1 install with 5 acs servers, 25 remote switches and over 800 xp users all doing certificate based machine authentication that work perfectly fine. We are also using a guest vlan in our sites to auth fail a guest user onto the guest v...

Friday I upgraded my CiscoSecure ACS from version 3.3 to 4.1. Upgrade seemed to go fine. Today I come in to find out that no one is getting authenticated. I have APs in WLSE configed with WDS that are not authenticating. I also have AP's not in W...

Hi,Currently my ACS is being integrated with AD and all the users can access my IOS devices (configured AAA). I only need one group in my AD to access my IOS devices and another group to use VPN access or any other authentications.Can anyone tell me ...

Hi,I would like to know what are the configurations required in Cisco ACS for authorization.I have done the foll configurations in the switch.aaa authorization config-commandsaaa authorization exec default group tacacs+ localradius-server host 10.240...