Network Access Control

Cisco Identity Services Engine (ISE), Cisco Access Manager (CAM), Zero Trust Workplace
cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
This community is for technical, feature, configuration and deployment questions.
For production deployment issues, please contact the TAC! We will not comment or assist with your TAC case in these forums.
Please see How to Ask the Community for Help for other troubleshooting best practices.

Labels

Forum Posts

I'm seeing posts that hit all around my questions, and based on my intereptation of the documentation it appears that there is no "shell exec" authorization available to the PIX when configured to use a TACACS+ server for authentication. Is this true...

sstone by Community Member
  • 749 Views
  • 1 replies
  • 0 Helpful votes

ACS

Need inputs on to do telnet to the ACS from a L3 6513 switch? Am trying to telnet from 6513 from where the traffic passes through a FWSM before hitting the ACS. Am able to see hitcount on the FWSM too.

aksher by Level 7
  • 478 Views
  • 1 replies
  • 0 Helpful votes

ACS

Need inputs on to do telnet to the ACS from a L3 6513 switch? Am trying to telnet from 6513 from where the traffic passes through a FWSM before hitting the ACS. Am able to see hitcount on the FWSM too.

aksher by Level 7
  • 496 Views
  • 1 replies
  • 0 Helpful votes

I've setup my AAA config as follows "aaa authentication login default group tacacs+ enable". When I test config with SSH (ACS turned off)to the router I cannot login using the enable password. The same does not work when trying to connect with Con0. ...

ms4561 by Level 1
  • 788 Views
  • 2 replies
  • 0 Helpful votes

Am doing a telnet to ACS server from L3 switch on port 2002 but it is not working.Error messages are "remote host not responding" from one host and from another L3 it's "closed by foreign host"

aksher by Level 7
  • 1025 Views
  • 3 replies
  • 0 Helpful votes

Good Morning Folks;Below is the output from the show aaa-servers from my asa5540. Notice the status "failed". When the status is thus (on both aaa servers) noone can login the the VPN on the ASA5540. I've checked the duplex / speed etc on the ports f...

jbigrow by Visitor
  • 2031 Views
  • 2 replies
  • 0 Helpful votes

I'm deploy a 802.1x NAC solution. Users authenticate ok but the VLAN is not assigned to the port. The RADIUS server send the attributes to the NAD (switch 3560). I see the following lines in the radius debug output:02:49:08: RADIUS: Received from id ...

mmoranzo by Community Member
  • 1012 Views
  • 1 replies
  • 0 Helpful votes

Hi guys,I am trying to assign a vlan to the fa 0 - 3 interfaces via dot1x. Im already successfully using this feature on a 6500, a few 2970 and a few 2940. But the 871 seems to be a little different. Im running IOS 12.4(11)T on the 871. When a host i...

c.karl by Community Member
  • 1044 Views
  • 2 replies
  • 0 Helpful votes

ACS

Need inputs on to do telnet to the ACS from a L3 6513 switch? Am trying to telnet from 6513 from where the traffic passes through a FWSM before hitting the ACS. Am able to see hitcount on the FWSM too.

aksher by Level 7
  • 630 Views
  • 2 replies
  • 0 Helpful votes

Is there away to find the shared secret of the primary ACS for replication. The primary was installed several months ago, and no one know the secret password, and I cannot get the replication to occur. I keep receiving shared_secret mismatch.