Network Access Control

I am trying to set up NAC in such a way that if one of our VPN clients does not have a certain version of the Symantec Antivirus or higher, it will only grant them access to the proper download. My current test scenario is Cisco ACS 4.0 and a Cisco V...

I have a phenomena where a user stays forever in the "logged-in users". This happens when a certain laptop disables the connection while the AP is down/out of sight. The user stays in the list forever, what can be done to deal with this ??

Yesterday we had two ACS 4.0 servers installed on Windows 2000 Domain Controllers that were working great. ACS1 was the primary server and replication was configured to send to ACS2. ACS2 replication was configured to receive from ACS1.We lost ACS2 y...

Im trying to configure new 1113 appliance, but I cannot access web admin. I can access it from telnet using administrator login, but when I try administrator login on web admin login page, it failed.Any idea what happen to my appliance?Thx

I have ACS Engine 1112 version 4.0. I would like to upgrade to 4.1 to get the SYSLOG feature. I'm confused as to whether I must have a 1113 for 4.1.

Is it possible to configure an Microsoft AD as an external Database with the ACS SE? Is a Remote Agent Required?

I have been told that ACS v.3.2 does not support PEAP with MS chap v.2 and LDAP search(Novell) Does anyone know if this is correct and if the latest version 4.1. supports it ?RegardsJohann Folkestad

I am using acs 4.0 for tacacs auth to network devices. I need to be able to force the password history to prevent users from using any of the previous 5 passwords. I see that there is an option to prevent from using the "last" one, but not 5. Can I o...

I am working off of an ACS Solution Engine and I have been trying to add users and update information using RDBMS. I have been able to successfully add users and give them passwords and even groups, but I can not figure out how to update information ...

I use the ACS box mainly for AAA on the switches and routers using tacacs. Now we're looking at the possibility of using 802.1x, my early reading tell me I have to use RADIUS, but I'm using TACACS, can I have ttow different methods of authentication ...

I have a Catalyst 4510R and I want to im plement 802.1x with dynamic VLAN assignment via Radius server. I am going to plug to switch ports Cisco IP phones and PCs (PCs are plugged in the IP phone).For this implementation I need to configure the switc...

I'm having a bit of a brain fart. I'm would like to use an AV-Pair in a network access profile in ACS 4.0, but for some reason the field for adding an AV pair is greyed out. Any ideas? Thanks in advance.

hello,i am having problem with max sessions feature.we were working with the acs trial and works fine, after we make the installation of the licensed version of acs, we did it over the trial, and the feature is not working, we check everything again,...

Hi,I have installed and configured an ACS 4.0 Solution Engine and have come across a problem with scheduling backups.If I run the backup to an FTP server manually it works fine. However, if I use the Java applet to set specific times for the backup, ...

I am using Microsoft IAS for my 2950's and 3550's. So far I can only get it to work using PAP. The options available are CHAP, MS-CHAP, MS-CHAP2, PEAP, and MD5. Are any of these supported by cisco because PAP is not secure.