Network Access Control

I have been using ACS to authenticate VPN users from our ASA5540 for several months with no problems. I map an ACS group "VPN-Users" to a group in AD. I have now created a 2nd group in ACS, "Wireless-PEAP", for wireless PEAP authentication. This g...

I noticed that Cisco Secure ACS 4.1.4 changed the System>Logging to not show Log File Management. It appears everything is now one big log with ability to filter, etc. What happened to the Log File Management?Customer is used to ACS 3.x and ability ...

On the TACACS+ Administration Report, there is a reason column. Does anyone know how I would use this?I'm looking for a solution to this problem. We have multiple scripts that log into our routers for various reasons. Instead of having to create 7...

Hi,I have to develop a custom application that sets/gets TACACS+ information for a particular user profile. I was able to set values in "TACACS+ Enable Control" form and "TACACS+ Enable Password" form using action code 105.But I am not able to set "U...

Hi all, I wonder if 1 username can restrict to only 1 session in VPN client.Because i found that 1 username can authenticate and establish more than 1 session at one time and it's against my company rules.I use ASA as the VPN remote termination and A...

Hi,I was wondering if anyone could possibly tell me the usual cause of the following error :Windows workstation not allowedIt keeps coming up for one of our new wireless workstation even though it sometimes authenticates fine.thanks,Matt

How many applinaces doesCisco Secure ACS Solution Engine 4.1 1113 support?

I am installing ACS for Windows 4.x on a new server. My server team built the server and they installed Java but it is not in the default location (e:\java). So when I try to access to add a local admin (first time login) from the server it is not ...

Hi!,In my environment i implemented AAA for logging into switches, routers, asa etc through ACS which is being configured TACACS+.I have set different privilege levels like readonly, readwrite etc into ACS. There are working fine when i try to login...

Hi everyone,I need your help !I have ACS Solution Engine (ACSE) 3.3.I have encountered the following symptom.1:User "ktaka" and "kina" have already existed/registered in ACSE local database.I tried to change the password for both "ktaka" and "kina" b...

I'm trying to implement Machine Authentication with PEAP ans ACS. Computers authenticate ok (due to ACS log) and users authenticate ok too.When I enable Machine Access Restriction in ACS, authentication fails due to Machine Access Restriction. Why is...

Hello, I have implemented a new Radius server and have begun pointing my IOS-based devices at it. When I do the new configuration, I see that one line from the old config is still present:radius-server source-ports 1645-1646I can not 'no' this line, ...

I am having a problem with setting up a 2600 router to use our radius server. I have a switch working on the same radius server however the router will not work. I am able to login locally, however it doesn't ever authenticate with the radius serve...

We currently are using Cisco ACS 4.1 and have TACACS+ configured on all devices (Pix, Routers, Switches) so that they let us in with Enable access. We need to add additional users but limit their access. I'm trying to figure out a way to allow certai...

Hi,I have Cisco ACS 4.1 appliance installed in 1.1.1.3.While configuring it is not accepting the DNS name,due to which even after giving the Static IP ,after the rebooting the static IP is vanished,it is taking some other IP like 169.X.X.X.If I do no...