Network Access Control

I'm running into an issue using AD integration and 802.1x. A previous thread on this indicated the 802.1x authentication occured prior to the domain login process. However, when I attempt to login to a machine using a domain account and that account...

Do you have good link with general procedures and best practices for setting up VPN user authorization to a standard Windows domain/AD.VPN3020 -> radius -> ACS (with default policy to Windows NT) does work, but wanted more granular control which user...

For the life of me I cannot find the explanation of the following command. Could somebody help me out?aaa group server tacacs+ tacplus

Hi,I am using a 2600 router as a Terminal Server to give access for students to an INTRO and ICND LAB. The authentication is made through a TACACS+ server running the ACS v3.3. I am using the "menu" command and the "autocommand menu" command in the l...

Hello,Is there any solution, that i can authenticate my wireless users with their (username+password) + MAC Address. Before this i'm using freeradius that can authenticate like this, using attribute Calling Station Id. Thank you

We have ACS 4 on a Windows 2003 box (standalone workgroup) and it needs to talk to the AD in the internal network. We can't add it in as an external DB because the ACS is not part of the internal domain. Thought we might be able to use LDAP?? Has ...

Am currently running a network with 2 x 4500's and many 2950's / 3750's throught a med - large sized network. Wanting to seperate departments up into vlans based on the user. We have many users with laptops that roam from site to site, so they are no...

I want to use our production RSA server to authenticate users on Cisco device's for authorization. I need to find out how to setup the ACS and RSA so I can pass all user requests to RSA. I have ACS 1113 running 4.0?Many thanks in advance.

Hi,Is it possible to make authorization using local database (not tacacs or radius)?I have username admin that has to have access to configuration on router. I also have usename and passwords for IPsec users, but they shouldn't have access to configu...

Hi,I have an issue with ACS and authentication proxy. It turns out that I want users to have only one session at a given time, but the ACS is allowing more than one session per user.Imagine the following sequence of events:1) user A logs in ok2) anot...

Is there a way that I can get CSUtil to run unattended? I do not want it to ask me if I want to run it offline. I would prefer that it just go offline, do it's thing and be done with it.ThanksDwane

Hi,I need to authenticate all (windows) users who access the internet through an IOS firewall. Applies not only to web traffic (which is easy to do), but also to other applications (e.g. some telebanking programs, RDP sessions etc.)Basically, I need ...

Hi,We have 2 Cisco ACS v4 servers. One is performing the role of "master" and sending its replications to a "slave". The problem is that when the schedueled replication happens, the network configuration is not replicated (no new AAA clients or serve...

Hi,Could you guys please tell me which ports I should unblock on the Windows 2003 Server for ACS 3.3.3?I have looked for documentation but cant find it anywhere.Thanks,