Network Access Control

After upgrading my ACS appliance to 4.0, remote users are not able to authenticate against the Windows external database. I have confirmed all the settings and even reinstalled the Remote Agent on my DCs. Any thoughts/advice?

Can anyone tell me why when we create a new account sometimes only the account name is saved, when we go and enter the rest of the details a duplicate account is created. I can delete the duplicate complete account but the user account with blank de...

Hi @ allI need helpI have acs 4.0Client Win xp sp1Win Server for Certificate (AD)Cisco 2950Client LinuxNow my problem:I can authentificate my WinXP Client with, dot1x, eap-tls, certificate ...it works, but Linux Client doesn`t work.Can anybody help m...

Hi everybody!!!!I was looking for some information or best practise informations for the integration of the acs 4.0 into a Novell eDirectory. I haven't found anything about that on the cco. Any ideas will be very helpful. Thanks Rene

I am configuring aaa accounting on a Catalyst 3750 running 12.2(25)SEE, but not have the wait-start option; I only have start-stop and stop-only. So I go to univercd and the wait-start option is in the IOS documentation for 12.0 and prior, but does ...

I have set a user with downloadable ACL on AAA server(ACS4.0 for Windows).On ASA5520,I have enable WebVPN on outside interface,and authentication method is AAA.When I login in ASA5520 through WebVPN,it(downloadable ACL)didn't work.Please help me!!!

Everytime I attempt to do a Password Recovery, I keep getting "COMMAND AUTHORIZATION FAILED". No matter what I do, I cannot make any configuration changes as I keep getting the same "COMMAND AUTHORIZATION FAILED". Need help ASAP!

Does anybody know that data origin authentication only occurs on IKE phase 1 when establish the SA for exchange key or also happens during the IKE phase 2 when establish SA for data transfering? I think it only needs at phase 1 since it is to authent...

I just installed UCP v1.0 (the one included on the CD) on my CiscoSecure ACS v3.0 Windows 2000 server.Set-up ran fine. I access the new web page, I can log in fine but when I try to change my password info, it comes back with "Error: Session Timed o...

It appears that the ACS will allow you to use external databases for authentication, like windows, LDAP, novell, etc.. Is it possibe to set this up so that vpn users can authenticate to these databases using their current passwords? Thanks

Reviewing a config writen by a co-woker I found the following, am I right that it is not requiring a password when connecting via the console or telnet?username Admin privilege 15 password xxxaaa new-model!!aaa authentication login default localaaa a...

Hi All,I am trying to configure my VPN 3000 series concentrator to use AD authentication. IAS is installed on the domain controller and I configured the VPN concentrator to use the domain controller for authentication. But I like to restrict the acce...

HiI'm using the ipsec vpn client with certificates for group authentication + radius with expiry, and everything works fine.I want to use certificate authentication for webvpn as well, but i'm not able to get it to work, the certificate CN is test-us...

Is there any way on PIX 6.3 to set up something like the IOS "single-connection" option for a TACACS+ server? I'm trying to optimize my ACS server and thought this might be a simple option, but can't find any mention of it in PIX documentation.Thank...