Network Access Control

Hello,with the standard Trust Agent, my NAC implementation works correct.However, when I use the Deployment Package Tool, for example to change my authentication to "Use Single Sign-on ..." and I put the XML-files into the correct folder, after reboo...

Hi,How to generate lost private key .pvk file on ACS which is also configured as CA Server, As I would like to register all the available ACS's Servers to CA Server using the same certificate from CA Server. Need a step wise procedure on obtaining ce...

Hi,I will have to describe our infrastructure if I want to explain ourproblem. In our network, we are running both Cisco IOS and Cisco IOS-XR.Every device is configured for RADIUS authentication and authorization(exec). This is the used configuratio...

In a Cisco Press publication "Troubleshooting Cisco Secure ACS on Windows" (http://www.ciscopress.com/articles/article.asp?p=474238&seqNum=6&rl=1), I read the following question:How can I disable the users' option to change the password by using Teln...

Hello together,I want to setup a user authentication for accessing services outside my ASA.For that I have an ASA (7.2) and a ACS (4.1.1.23.4) configured with RADIUS downloadable access lists.The authentication procedure works fine, the ASA gets the ...

Dear, I am trying to setup our new ACS server 4.1 but it isn't working . can any one help out?here is the output of the debug:.May 14 13:31:57.166: TPLUS(000000E2)/0/READ/82D3520C: timed out.May 14 13:31:57.166: TPLUS: Authentication start packet cre...

Hello together,I have another question concerning the ACS 4.1 Appliance (CSACSE-1113-K9) .Is there any way to import user via tools??I saw that there had been the CSUtil.exe tool for older versions, but I don?t know how to access the windows desktop ...

AS5350 with IOS 12.4(7)(c5350-jk9s-mz.124-7.bin)Is working as a PPtP terminator.I am trying to get the radius attribute 31 from dial-in router.I strongly need attribute "31" which should be as MAC address of pptp client.It does not appear even in deb...

I have a problem configuring Generic LDAP against my Netware Ldapserver. As far as I can see, the log files reports only "Externel user not found"Is there a logfile with more details about the LDAP request ?RegardsJohann Folkestad

Hello,I have a simple config on my router:aaa authentication login default group radius localaaa authorization exec default group radiusMy ACS user account is a member of an unmodified group on the ACS server. I have not set a privilege level in the...

Hello,I am looking for a way to generate an SMTP message in response to a failed login attempt (admin interface access or failed user login attempt). Any suggestion on how I might make this happen is appreciated.Thanks.

Hi,This is simple! I'm missing something. Multiple 2651 routers with Tacacs authentication and authorization configured using 'default' list. thats fine, but want to add accounting.Add the lines:aaa accounting exec default start-stop group tacacsa...

Hi,I would like to configure accounting on PIX devices version 6.3(5)and up. I only need to capture device administration commands for the boxes. The firewalls are setup with aaa authentication and SSH. I did not see SSH as an option for protocols to...