Network Access Control

Cisco ACS Problem when authenticating using Safeword

I recieve a failed attempt when dialling in to the network and using Safeword key token to authenticate with the Cisco ACS the Error is "Eternal DB reports Error condition" Any help please.

AAA Acounting using FreeRadius Server

We have switched to a different Radius Server (FreeRadius) in order to be able to use AAA Acounting to bill the customer by the byte. The Cisco box being used is a 7206VXR/NPE300 and when we point the Cisco router to the new Radius Server, the CPU ut...

Cisco Secure ACS 2.4 Callback

HiWe will possibly be attaining a Cisco Secure ACS 2.4 for installation on an NT server. The current solution that we have is just a bank of modems at the back on the NT server. We are hoping to change this by installing the ACS on the NT server and ...

RADIUS authentication with Windows 2000 server

I am attempting to set up my 6506 to use RADIUS authentication using my Windows 2000 accounts database. What I would like to do is make it so my Windows 2000 account (we'll call it "superuser" here) has level 15 access to the switch, with a local ac...

AAA Authentication

Hi there,I have set up a 3640 server for dial in access and want to point users at a Windows 2000 RADIUS server for authenication. Can anybody help me with the RADIUS AAA commands on the router?Thanks in advance,Daniel,

ACS 3.0(1) Password Aging on does not work!!

Dear Members,We are using a cisco 3620 (IOS V 12.1.(5)T10) with ACS version 3.0(1) for Windows NT/2000. We use the RADIUS protocol and use the Windows 2000 user database to authenticate users.We want users to change their password once it expired. ...

Implementing AAA on 5200 run DDR

I would like to move to AAA for better administration. We currently have 100 DDR dialer interfaces using chap. Can you enable AAA an slowly migrate each dialer interface to AAA or is it all or nothing. If it is all or nothing can you change the di...

ACS 3.0 installed on a domain controller or on a member server

Is it necessary to install Ciscosecure ACS 3.0 on a Windows 2000 domain controller or can it also be installed on a member server ?

ACS Configuration

I'd need some information on CiscoSecure ACS.I've read on Cisco's web-site that I can import a text file into theCiscoSecure, in particular of the format reported below (concerningmobile IP).My questions are:1) in which way can I import such a file? ...

LDAP Group Mapping Issue in ACS 3.0

Hi,I am using ACS against a LDAP directory and I having problems with the group mapping. In general, everything is working pretty good. If I setup a group map with one LDAP group to one ACS group I have no problems the user gets authenticated an...

AAA Authentication with windows 2000 IAS active directory through cisco2610

Can cisco 2610 work with windows 2000 IAS active directory as RAS for authenticating ?.We are configurring cisco 2610 as a RAS for remote dial access.Windows 2000 IAS using as Redius server for authentication.Whille we are tesitng the same authentic...

VPN 3002 and Individual User Authentication

I am attempting to get Individual User Authentication (IUA) working on a VPN3002 hardware client (client and concentrator at 3.6.1). The user details are stored on a CSACS server (2.6(1)). The static user name/password for the initial tunnel authenti...

Failure to Authenticate via Win2K Domain after Vers. 3.6.1 upgrade on 3080

Clients unable to Authenticate using Win2K Domain after 3080 upgraded to 3.6.1Message in log:216 09/02/2002 20:42:07.530 SEV=4 IKEDBG/ 65 RPT=3 144.137.98.128Group [networks] User [CENTRAL\dmallyon]IKE TM V6 FSM error history (struct &0x9a0b354)<stat...

Cisco VPN 5000 RADIUS PAP authentication vulnerability

The Cisco VPN 5000 series concentrator running firmware versions 6.0.21.0002 and 5.2.23.003 (and prior) sends the user's password in plain text to the RADIUS server in PAP authentication validation retry request packets. Attackers sniffing the networ...

VPN 3002 in Network Extension Mode with RADIUS User Authentication

I have set up a VPN 3002 in Network Extension mode connecting to a central VPN 3015 and I discovered that the Framed-IP-Address RADIUS attribute in the RADIUS configuration for the VPN3002 user had to be set to the subnet used on the private network....

Network Access Control

Forum Posts

Cisco ACS Problem when authenticating using Safeword

AAA Acounting using FreeRadius Server

Cisco Secure ACS 2.4 Callback

RADIUS authentication with Windows 2000 server

AAA Authentication

ACS 3.0(1) Password Aging on does not work!!

Implementing AAA on 5200 run DDR

ACS 3.0 installed on a domain controller or on a member server

ACS Configuration

LDAP Group Mapping Issue in ACS 3.0

AAA Authentication with windows 2000 IAS active directory through cisco2610

VPN 3002 and Individual User Authentication

Failure to Authenticate via Win2K Domain after Vers. 3.6.1 upgrade on 3080

Cisco VPN 5000 RADIUS PAP authentication vulnerability

VPN 3002 in Network Extension Mode with RADIUS User Authentication

Hearty congratulations to the December Spotlight Award winners!

Renew.cisco.com just got refreshed, and it will make your life easier!

Announcing Resources That Guide You to Success

Apple iOS CNA issues with Guest Portals on ISE

ISE 3.1 guest flow with Aruba IAP

ASA SP for SAML (Micrososft MFA) + ISE for Authorization

ISE 3.0 and SecureX Orchestrations

Can AnyConnect ISE posture popup action be changed?

Wilcard Certificate for Cisco ISE admin portal

trace route to ISE interface

Certificate based auth: which values are checked in AD?

Authenticate on UPN and or SAM Logon

Stop NAD from talking to ISE via CTS without removing 'cts manual'