Network Access Control

We can not get logging window and have to refresh the IE URL several times in order to get the logging prompt for user id and password. We DO NOT KNOW if issue is with our PIX or ACS-TACACS issue.

Wired authentication:This is what I want to accomplish:Switch - ACS 4.0 -> Active DirectoryAssume a new user is logging into the network for the first time and he starts his computer which has been configured for 802.1x PEAP. I have checked off the o...

Hello,I have a PPTP/L2TP access server and two groups of clients: PPTP-only clients and L2TP-only clients.All clients is authenticated with one Radius server.I need to send type of tunnel (PPTP or L2TP) to Radius to distinguish these groups of client...

Hi, I trying to configure WEB VPN in my VPN concentrator 3060 with version 4.7.2.H. i followed the instructions given in the cisco document taken from the below URL.http://www.cisco.com/en/US/customer/products/hw/vpndevc/ps2284/products_configuration...

Hi expert,my customer got some alerts from his ACS log, see below:TCS 08/01/2006 00:01:08 E 1935 3556 Failed to obtain callback type for user profile getconfigTCS 08/01/2006 00:01:08 E 1935 3556 Failed to obtain callback type for user profile getco...

I want to ask about limitations of Cisco ACS server 3.3 . I use ACS server for Radius authentication, and has a limit 80 authentications per second. But at peak time i need 150-200 authentications per second. Is this a software limitaion or changed d...

I have 2 ACS 4.0 servers that are in production. Every 4 to 5 weeks user are suddenly unable to authenticate using EAP-TLS. When I check the failed attempts log the error message is "external user not found". I reboot the servers and everything is...

Problem: I'm having problems getting one of my Catalyst 6513 switches to authenicate with my ACS server.Background: I've got two Cisco ACS servers and several hundred switches on my network. All of my switches (except teh 6513) can authenticate with...

Hi,we have some new HP ProCurve Switches in our Network and we want our Cisco ACS RADIUS-Server to do their (vty) login-authentifiction.Unfortunately I'm not familiar with the Cisco ACS and I also don't know which VSAs are needed by HP switches.Can a...

I've created and mapped security groups in active directory DomainWirelessOK and DomainVPNOK. I mapped those to ACS_Wireless and ACS_VPN.In my production environment, currently all users on ACS authenticate using "Default Group". What's the best way ...

Hi.How i can to route a Accounting Request to a service in base to Group or Profile of the User? The Cisco documentation says how do it in base toIP-Nas, realm, but i need (for example) send a Accounting request of user CISCO to a "TESTACCO" serv...

I need to work on a project to implement AAA for VPN and Wireless users.I configured ACS 3.3 and Active Directory Groups accordingly.I do not have a Cisco VPN 3000 concentrator or wireless access-points available in the lab.Can someone suggest a crea...

ProductCisco Access Registrar (Standard Version)AR-Standard 3.5 AR-CPU 3.5 How to add a VSA under [ //localhost/Radius/Profiles/Test-Profile/Attributes ]From User-guideAccording to Table A-1 Tcl Attribute Dictionary Methods addProfile $dict addP...

On ACS 3.3, I renamed and mapped ACS_Wireless and ACS_VPN3000 to my respective Active Directory security groups DomainWireless and DomainVPN3000. I want to let only members of these groups have access to those services. Following the ACS documentatio...

Is the OS on this appliance even accessible for management? Can services, such as snmp, be enabled? How does one back this thing up? Not having any luck looking through the documentation. Any help would be appreciated. Thanks