Network Access Control

I have been informed that I am to move the ACS 3.3 from one server to another. So I have some basic questions. 1) I am going to do a fresh install and then would like to copy the existing files to the new server.2) If I can copy all of the files (I f...

I am integrating ACS with windows ADS for dot1x authentication. I m sucesfully able to get the requirement. But I have only one ACS. If my acs fails all my users will not be able to login into the network. Is there a way I can make the user get only ...

I have remote users that connect to the corporate network via vpn terminating on a VPN3k at the primary site. These users are authenticated and given IP addresses by Cisco Secure ACS. There is a backup site where the backup ACS is deployed. I woul...

I have two groups defined in my CiscoSecure ACS server. Network Admins are mapped to the Network Admins NT group with no NARs. Information Protection is mapped to the NT group Information Protection with limited access to a few network devices usin...

I am trying to do a bulk import from a text file of some NASs and those NASs have multiple IPs. The documentation says to use the pipe (|) command, but every combonation of the pipe command always seems to return a syntax error. what is the exact uti...

Dear All, I was reading my NAT Design Paper, because I am going to Implement NAT in My Company.Now, I want to ask you for only the Process of Static NAT , to allow External Users ? on internet side ? to ? access a specific server inside my LAN.Which ...

Hi Guy,Please clear some of my doubts for tacacs client configuration.#aaa authentication login default group tacacs+ localwhat will be diffrence between both configuration.#aaa authentication login myway tacacs+ local!#aaa authentication login defa...

Hello:I have a LDAP server configured and authentication working just fine. My next goal is to provide SSL VPN services to some employees. Their Tunnel Group membership should depend upon their LDAP 'group' membership.For example, our LDAP administ...

Hello,I have a text file containing 1000 users/passwords. Is it possible to import this user list into ACS local user database? is there any other trick on how to achieve this?thanks for your suggestions

Hello,I have the following scenario, access points 1214 (fat AP) connected to ACS (RADIUS) and the ACS integrated with Novell LDAP as external database.The wireless users use PEAP for authentication, here the problem when I tried to connect wirelessl...

Hi,Is it possible to use extended authentication (X-auth) to do a double authentication first one at group level against a RADIUS ?based token server and then a new authentication against the Active Directory to be able to map user group -mappings fr...

HiI've got one ACS 4.0(1) server which we upgraded from 3.3 and one ACS 4.0(1) server running the 90 day trial version. The server which was upgraded from 3.3 to 4.0(1) is the master server with all the user accounts etc and I'm trying to get it to ...

I add "Testuser" to my active directory security group "DomanWireless" and I see on ACS the respective user is mapped accordingly and get authenticated as "Group Name=ACSWireless".If I remove the user from "ACSWireless", user defaults to "Default" gr...

I am currently experiencing an "unintentional" denial of service attack causing my ACS server to stop working due to high processing because of a lot of PEAP login attempts from PC Clients with corrupted certificates or any other problems. The quest...

Hi! Good day! I urgently need help on how to configure aaa on a router to send accounting start stop attributes to multiple servers simultaneously.Thanks and Regards,Albert