Network Access Control

We run ACS 3.0 on a windows 2000 sp. 4 server. A nmap scan shows a lot of open ports, e.g. 7/tcp, 9/tcp, 13/tcp, 1050/tcp, and also some udp ports.Does anyone know what ports the Acs use ?RegardsJohann FolkestadVolda Univesity College

Hi. I'm having a problem with the way I've set up http authentication for my users going out to the internet. My goal is to for the users' authentication credentials to remain active while their browers are open, but expire when they close their web...

I have a quick question concerning the configuration of the 3000 series of VPN concentrator. If an external database is used for authentication (ie Active Directory), is it possible to restrict which users can establish a VPN connection by employing...

I am trying to update the IP address of a number of users that authenticate against ACS4.0. I am imputing the relevant data into the accountactions.csv manually and manually running rdbms synch. I have attached a copy of the format I am using in the ...

Hi all,I am trying to configure a 3640 for authorization. The 'tricky' part is that I have to make a difference between dialup-access on one hand and exec-access on the other hand.I am using TACACS+ for authentication and authorization.The original c...

i have 2950 and 3750 switches. i want to give few lan admins access to view and change port speed and duplex, thru http acess. i can use ACS server (tacacs+). i tried to create local user with privilege 7. i also tried with tacas+ server. either way ...

Does any know if there are any issues replicating between ACS 3.3 and ACS 4.0. Also has many people migrated to 4.0 yet if so any major issues or reasons to upgrade?

Hi,We have 7200's performing L2TP terminaton for DSL clients (Auth from Radius server), and would also like to allow users to VPN in via Windows L2TP - We currently dump users into various vrf's via RAdius reply attribute, so was hoping we could do t...

Hello All...I´m configuring VPN PPTP on Cisco Router, and when I configure authentication LOCAL, it is work fine.Now I want to use Radius Server, and I have this configuration:!aaa new-model!aaa authentication login default localaaa authentication pp...

When a user logs into a AAA client via CNA, the AAA client sends Passed Authentication information to ACS 3.3 sometimes two and three times a second.Has anyone ever seen this before?I have tested CNA by logging into different model switches with diff...

Hi Everybody?Does ACS 3.3 support " Entrust Entlligence Security Provider 7.0 for Windows " as strong authentication server?What about 4.0 ?Thanx in advance.Jarle

I try connection to a PIX501, but after authenticating with username/password I get "403: unable to contact the security gateway".In the Cisco VPN client log I found the following indication something's wrong, the rest of the log seemed OK...43 2...

Customer wants CSACS-4.01-WINUP-K9 (Upgrade to CSACS 4.0 for Windows from 1.x 2.x 3.Xand CS Unix).What version is Cisco currently shipping when CSACS-4.0-WINUP-K9 is ordered?If 4.0 is shipped, how do we upgrade the Customer to 4.01?If 4.02 is shipped...

I'm using a VPN 3000 Concentrator with Kerberos authentication (AD). 1 user cannot authenticate, all others do just fine. When I use the test feature on the concetrator, I get "Authentication Rejected: Unspecified." Any suggestions?