Network Access Control

Hi Sir,I have the following AAA accounting commands on an IOS device:aaa accounting exec default start-stop group tacacs+aaa accounting commands 15 default start-stop group tacacs+aaa accounting network default start-stop group tacacs+aaa accounting ...

Hi, I have a Cisco RADIUS to RSA (Steel Belted) RADIUS question.I have just added a new Dial-In service to our existing RSA /RADIUS SecurID v6.1 server. The dial-in service is hosted by a service provider and once a PPP session is established a RADIU...

Hello,I am having problem while configuring AAA on PIX running IOS Ver.6.3 for administrative access through Telnet.I enabled AAA commands for telnet on PIX and associated to ACS 4.1 Appliance and tested authentication using both RADIUS and TACACS+ i...

I have set up my RSA RADIUS server to authenticate logins to my Cisco device(s). And, I have managed to limit which users can login (by assigning them to a Group in RSA and then Activating that group on the router Agent Host). Works fine.The last t...

Hi Sir,I have deployed an ACS Solution Engine 4.1(1) Build 23 to provide AAA services for routers/switches login.I'd like to create a user group that is restricted to only "show" commands when the users log in to the network devices.I have done the f...

When accessing the reports on our ACS, for example, the Passed Authentications report, the .csv file is just too long. Is there something I could that that would cut the future reports down by month. So each .csv files would be for 1 month. I want t...

Hi,We're using AD SSO, is it possible to choose a role based on the host rather than the user.For example some users have desktops and laptops but each run different software so will need separate policies.Is this possible using AD/LDAP?Thanks.Jim.

Do you have a complete user guide for ACS server that I can print out?

I configured AAA on all my devices and i need to disable the accounting for my username on ACS.How can i do that?

We are in the process of configuring NAC and having trouble with the LDAP authentication to our Novell network.Using:Novell Server 6.5CAM ver 4.1.2.1Under User Management --> Auth Servers we have set up our LDAP provider and tried every combination u...

I have configured the switches and routers with ACS AAA policy. My commands are like this.aaa new-modeltacacs-server host x.x.x.x key passwordtacacs-server host x.x.x.x key passwordaaa authentication login default group tacacs+ localaaa authorization...

i need to create about 2000 user for AAAfor dial up users thought VPN

My background is not in security, but more so in hardware design...but I have come across a question I am asking for help on...I am cofiguring a device to put on our network. We have network logins and if the TACACS server is down, it auth's locally...