Network Access Control

What caveats can I expect when implementing 2 factor authentication, for RAS users dialing in when using RSA and ACS? Users are authenticated via Active Directory from ACS, so password expirey for them is required.I'm having trouble finding documena...

I have disabled telnet access to my Cisco2948 and Cisco5609 (runing CATOS) but im still able to telnet, am i missing anything? here is my configset ip permit enable sshset ip permit enable snmpset ip permit 10.0.0.0 255.0.0.0 sshset ip permit 10.0.0....

Hi,Has anyone had any luch with integrating CSM With ACS4.0?I can authenticate a user but the problem is is it will only give level 1 privelige.Is there any way to force the user to go to level 15?I am using External database with Windows Authen.Than...

hi all, i'm tryin to get the certificate setup for the peap authentication for wireless clients.i installed the certificate according, enabled peap/tls authenticatiion, checked the certificate trust lists.i was able to connect to the server witho...

Hello, i wonder how could i get accounting of who get in asa n what have he done to asa. I already input :aaa accounting command <group>aaa accounting enable console <group>aaa accounting telnet console <group>And i can see who login in tacac+ accoun...

Hi,we want to upgrade ACS Solution Engine from 4.0 build 23 via 4.1 to 4.1.3.We also use Windows Remote Agent to authenticate External User Database (Windows Domain Users). Does anybody know the best way to upgrade. Should we upgrade Windows Remote A...

I configured the group in the VPN to use ACS for user authentication. When I try to connect to the VPN the group pass the authentication but when asked for the user username/password it does not work. Can someone help

Hello, i just wanna ask the config to set AAA failover if ASA couldn't contact ACS. Is that possible? I want user access by authentcating to ACS but if ASA's connection to ACS fail, it will revert authentication to ASA itself.I see that ASA config is...

We are getting an error saying that the old installation folder appears to be locked. Has anyone else experienced this?

Hi, we have a Cisco Bridge (with 1310Gs)and have the problem that the non root bridge does not reach the ACS server with its authentication requests (when we use OPEN authentication the bridge works fine).The authentication requests by the root Bridg...

I'm trying to upgrade from 3.3.2 to v3.3.4 on a Windows 2000 server (SP4) and everytime I run the update it gives me a message about half way through:"The CiscoSecure ACS folder appears to be locked by another applicationC:\Program Files\CiscoSecure ...

I have a setup where my VPN users hit the ACS server for user authentication - off of AD. What I am not sure of, is how to limit which users have VPN access. All of the users would still need to authenticate for wireless (EAP) but be limited to eit...

Good morning all, Prior to switching to the appliance version of ACS, we had a couple perl scripts that would run to accomplish some accounts management. Have any of you tried to do this since installing the appliances? Also, is there a particular ...