Network Access Control

I am using acs 4.0 for tacacs auth to network devices. I need to be able to force the password history to prevent users from using any of the previous 5 passwords. I see that there is an option to prevent from using the "last" one, but not 5. Can ...

I am working off of an ACS Solution Engine and I have been trying to add users and update information using RDBMS. I have been able to successfully add users and give them passwords and even groups, but I can not figure out how to update information ...

I use the ACS box mainly for AAA on the switches and routers using tacacs. Now we're looking at the possibility of using 802.1x, my early reading tell me I have to use RADIUS, but I'm using TACACS, can I have ttow different methods of authentication...

I have a Catalyst 4510R and I want to im plement 802.1x with dynamic VLAN assignment via Radius server. I am going to plug to switch ports Cisco IP phones and PCs (PCs are plugged in the IP phone).For this implementation I need to configure the switc...

I'm having a bit of a brain fart. I'm would like to use an AV-Pair in a network access profile in ACS 4.0, but for some reason the field for adding an AV pair is greyed out. Any ideas? Thanks in advance.

hello,i am having problem with max sessions feature.we were working with the acs trial and works fine, after we make the installation of the licensed version of acs, we did it over the trial, and the feature is not working, we check everything again,...

Hi,I have installed and configured an ACS 4.0 Solution Engine and have come across a problem with scheduling backups.If I run the backup to an FTP server manually it works fine. However, if I use the Java applet to set specific times for the backup, ...

I am using Microsoft IAS for my 2950's and 3550's. So far I can only get it to work using PAP. The options available are CHAP, MS-CHAP, MS-CHAP2, PEAP, and MD5. Are any of these supported by cisco because PAP is not secure.

Hi there, I appologize if this question has already been posted, but i searched the forums and nothing turned up. Im upgrading a couple of pix 525's to 7.22.. after doing so, im trying to add a user. whenever i try to give the user an encrypted passw...

Replaced a 10 year old failing system with an ASA5510(asdm5.2, asa52) and and IAS server. The users do NOT want to see the authentication window, nor do anything on it. That was not needed with the old system and its client software.To keep my job ...

Hi, I am running ACS 3.3(3) Build 11.When I select the "next page" from any of the reports, I get a "page cannot be displayed" error. (1st page is fine).Any ideas what this can be caused by?Cheers, Steve.

Has anyone been able to configure 802.1x authentication on Windows XP machines using RSA tokens using Cisco ACS as the RADIUS server?I have come up with bunch of incompatibilities between the offered support e.g. 1. Microsoft PEAP does not support an...

Has anyone tried to use the ACS as a RADIUS proxy to a OTP system with an AD user database on backend? This is so confusing i'm not even sure how to ask the right question.I'm trying to setup a centralised SSL VPN with multiple domains and it works f...

With Auth-Fail VLAN configured on Cisco 3550 the Switch successfully configures the port to the configured auth-fail vlan upon unsuccessful authentication. The PC even gets the IP address from DHCP.However, the Windows XP network icon on the task ba...

Hi All,Has anyone setup authentication with an ASA or concentrator and OpenLDAP? I'm trying to find a schema to load with slapd.Thanks,Stephen