Network Access Control

I've created a Net Dev Group with my new group name, then added two pix clients within. I then go to Group Setup and expect to see my new group in there (so that I can apply authorization) but my new group name does not appear. We have 18 groups buil...

Hi.I've logged the router provided by the ISP of mine (of course, with the a userid provided). I noticed that i can perform a "show running config", showing however only a partial configuration of the router (ACL, AAA, services running arent shown), ...

Shortly we began tests with VOIP, these devices authenticate using CS AAA server.In the logs of our NAS we find the following messages : May 30 07:35:58 [10.2.51.99.227.50] 5: May 30 07:35:57: %RADIUS-4-RADIUS_DEAD: RADIUS server 10.2.19.202:1645,164...

HiWe are deploying ACS4.1 for our campus and wonder if we can use LDAP as external database while using username/password not certificates as user access configuration.thanks

Hi, I am trying to integrate Active directory authentication through ACS 4.1 for the webvpn users configured in VPNC. I am able to login with the AD username but the problem i found is that even when the user account is disabled in the AD, the user i...

I'm using ACS 3.3 and I'm trying to restrict telnet access to some subnets only. Is there any option in the ACS that can be accomplished with?

Hi all,I am currently working on ACS 3.2 to authenticate with external Novell NDS. I was able to authenticate it using Cisco supported card and wlan utility. With this set up, this can authtenticate using PEAP-GTC, but not EAP-TLS. I would like to us...

Hi!I am new to ACS, I just want to know if there is a way of checking running services on an ACS server remotely, without serial connection to the server. Can I telnet to it?

We are working on configuring a NAC Framework test network. We've got to the point where we can successfully evaluate and flag a client PC as healthy or quarantine and enable/disable it's switchport as appropriate. The next step that we are having a ...

I have just started logging AAA accounting commands on my ACS. I am able to view all commands entered without any trouble. I would like to NOT see commands entered from one particular source. I have an IDS device that shuns to a router. The shunning ...

Does anyone know if there is a method to change an aaa configured server from failed to active? For example I have two RSA servers configured as aaa servers on my ASA. I currently have a problem with the second one (sho aaa server shows it as failed)...

Hi we have 2 ACS4.0 box, internal replication is happening between ACS1(prim) to ACS2(sec) but not ACS2 to ACS1 why?Also I need 1 suggesion, whether we can connect 2 ACS boxes through cross cable for sync.At present it is connected with 2 diff cores(...

Hi,I'm working in a NAC lab where I wish assign a VLAN via 802.1x during machine boot using machine authentication only in CTA. After that when an user logs into that machine I want to assign an user based VLAN even thought switch port is already aut...