Network Access Control

Hi we have 2 ACS4.0 box, internal replication is happening between ACS1(prim) to ACS2(sec) but not ACS2 to ACS1 why?Also I need 1 suggesion, whether we can connect 2 ACS boxes through cross cable for sync.At present it is connected with 2 diff cores(...

Hi,I'm working in a NAC lab where I wish assign a VLAN via 802.1x during machine boot using machine authentication only in CTA. After that when an user logs into that machine I want to assign an user based VLAN even thought switch port is already aut...

Hi,One of the ACS is configured as CA using third party Certificate, But the server certificate on ACS was self generated and is expired. I tried using the same third party certificate to replace the existing expired server certificate on ACS both by...

Hi,I'm implementing ACS 4.0 to provide PEAP Security on a customers WLAN. I'd like to use the Self signed certificate feature within ACS, because it's easy to use and I don't want to 'play' with the customers Servers to install CA unless I really hav...

Hello, I encountered the following: after successful 802.1x authentication, the "passed authentication" log on ACS is filling with "authen OK" logs from the same user - every 2 minutes one new entry. The reauthentication on the switch is for sure tur...

Hi All, I have a very basic Telnet access issue after enabling the Telnet Access under device administraion and have added the source ip subnets. But still when I get to do Telnet I get a blank screen with no errors. Some one can help me on this.Note...

IS there any verdict out on using pnlogagent VS Syslog on ACS 4.1? What is the recommendation to use? thanks-Aaron

How to disable AAA on 3750 switch which has got screwed up due to missing of tacacs-server key command in older configuration. I believe RMON mode will not work...

Is there a way to quickly delete all ACS for Windows 4.0 users? It is not in the GUI and I believe CSUtil would need to be utilized but CSUtil does not accept the '*' for deletion. I tried to use '*' as a catch all.

Hello, I am installing the latest version of the ACS appliance. I connected to the serial port and configured all the basics but the IP address/mask/gateway are not being retained. The hostname/DNS servers/new login are though. After entering the IP ...

Hi,I have a scenario where I need to be able to allocate an IP address to a user group from a pool on the AAA server based on the AAA client that the user authenticates against. So for example if the user comes in on CPE1 they get assigned an address...

We are facing problems with ACS when we install SP1 on the ACS Server on Windows 2k3 Ent Edition.After SP1 is installed, ACS admin web interface hangs whenever a AAA client is added or NDG is added/deleted/modified.It hangs on some other changes as w...

I am trying to setup TACACS authentication on a Cisco switch. I want the primary method to use TACACS for authentication, and I want the local username that I define in the switch to take over authentication should the AAA server become unavailable. ...

Hi,Is there any solution to extend the validity time of self generated certificate on ACS, by default the validity is set for one year.As the server certificate on one of the ACS which is CA has expired and need to renew it.Is it possible only one ce...

Is there a deplyment guide available for this?