Network Access Control

Hi,I have been noticing this issue on most of the devices I touch. Here is the pertinent configuration.ip ssh ver 2ip ssh source lo0ip ssh rsa key SSH-KEY!line vty 0 15trans in telnet sshexec-time 30 0If I telnet to the device, the session will time ...

My remote users connect to a vpn 3005 and are authenticted by a CSACSE 4.0. The authentication process is done but the users have no network services. Any ideas???

I upgraded the appliance from 3.3.3 to 4.0.1.42 and the services do not start. I have nothing under "TCP Ports Opened" and "UDP Ports Opened" on the Appliance Status page. How do I start the services?I have "CiscoSecure ACS on xxxxx Is Currently Runn...

I am trying to set up NAC in such a way that if one of our VPN clients does not have a certain version of the Symantec Antivirus or higher, it will only grant them access to the proper download. My current test scenario is Cisco ACS 4.0 and a Cisco ...

I have a phenomena where a user stays forever in the "logged-in users". This happens when a certain laptop disables the connection while the AP is down/out of sight. The user stays in the list forever, what can be done to deal with this ??

Yesterday we had two ACS 4.0 servers installed on Windows 2000 Domain Controllers that were working great. ACS1 was the primary server and replication was configured to send to ACS2. ACS2 replication was configured to receive from ACS1.We lost ACS2...

Im trying to configure new 1113 appliance, but I cannot access web admin. I can access it from telnet using administrator login, but when I try administrator login on web admin login page, it failed.Any idea what happen to my appliance?Thx

I have ACS Engine 1112 version 4.0. I would like to upgrade to 4.1 to get the SYSLOG feature. I'm confused as to whether I must have a 1113 for 4.1.

Is it possible to configure an Microsoft AD as an external Database with the ACS SE? Is a Remote Agent Required?

I have been told that ACS v.3.2 does not support PEAP with MS chap v.2 and LDAP search(Novell) Does anyone know if this is correct and if the latest version 4.1. supports it ?RegardsJohann Folkestad

I am using acs 4.0 for tacacs auth to network devices. I need to be able to force the password history to prevent users from using any of the previous 5 passwords. I see that there is an option to prevent from using the "last" one, but not 5. Can ...

I am working off of an ACS Solution Engine and I have been trying to add users and update information using RDBMS. I have been able to successfully add users and give them passwords and even groups, but I can not figure out how to update information ...

I use the ACS box mainly for AAA on the switches and routers using tacacs. Now we're looking at the possibility of using 802.1x, my early reading tell me I have to use RADIUS, but I'm using TACACS, can I have ttow different methods of authentication...

I have a Catalyst 4510R and I want to im plement 802.1x with dynamic VLAN assignment via Radius server. I am going to plug to switch ports Cisco IP phones and PCs (PCs are plugged in the IP phone).For this implementation I need to configure the switc...

I'm having a bit of a brain fart. I'm would like to use an AV-Pair in a network access profile in ACS 4.0, but for some reason the field for adding an AV pair is greyed out. Any ideas? Thanks in advance.