Network Access Control

i need to enable aaa users to shut and unshut interfaces but nothing else. i already have all the users and groups setup but when i modify the command auth set to include "configure" "permit term" they are given unrestricted access.any help appreciat...

I have a ACS 3.2.11 engine with the RA on a DC. When I attempt to log into a device serviced by the TACACS+, the initial login fails in authentication. Subsequent logins succeed. Come back to the same device a couple of hours later, and the initia...

I can't seem to get a ldap connection between acs 4.0 and our netware 6.5 servers. Help would be appreciated. I continue to receive an "external db reports and error condition" in the failed auth reportThe csauth log shows External DB [DServDll.dll...

I have the following equipment:Cisco 3005 Conc.Cisco ACS 3.3MS Windows 2003 Active DirectoryWe are using VPN Client 4.8.On 3005:Group:XXXXX is set to point at ACS server for Authentication and Posture Validation via RADIUS.On ACS:External database po...

Hi,We have a authentication named list that has TACACS+ as the primary and "local" as the back-up method.In my understanding the backup method should only be used when the TACACS+ is un-available ?But what happens is that when i try to connect with a...

We have just purchased two PIX 515E units and have an issue, we are using an AAA (RADIUS) server for authentication to authenticate (Via Active Directory) user before they connect to the Internet.The problem we are experiencing is that the PIX unit s...

from follow web link ,it said asa 5500 can authentication from nt server.i wonder if it need acs(aaa server) implement this function ,or not?thank you very much.http://www.cisco.com/en/US/products/ps6120/products_configuration_guide_chapter09186a0080...

Hi Guys,Does anyone have any experience of being able to run ACS 2.6 on a windows 03 machine. The client wants to upgrade the server running ACS to windows 03 but doesn't want to pay for a new release of ACS. Has anyone managed to get ACS running on ...

We are about to install two ACS appliances to integrate with ADS, and are trying to figure out where we want to install the remote agents. We were considering our network management servers and the domain controllers.Does anyone have input (positive...

What is the best ftp server software to use to backup Cisco ACS 3.3 for windows?

hello,i have a issue where the same command which is denied in IOS switches is allowed in catOS switches. No idea why it happens since my TACACS server(free tacacs server from cisco) denies the sh conf or sh run command for a particular userwhen a us...

We use ACS for windows 3.2 for authentication users on our router and switches. Now i want to configure AAA access to our Cisco 1100 AP's. For normal VTY (telnet) access it's no problem but de web interface witch use ip http authentication aaa the co...

When I use two tacacs-server, the tacacs dosn't take the secondary tacacs-server. When one of the tacscs servers are down, the router takes always the first.Image:c3640-ik9s-mz.124-5a.binConfig:aaa new-modelaaa authentication login default group taca...

from follow web link ,it said asa 5500 can authentication from nt server.i wonder if it need acs(aaa server) implement this function ,or not?thank you very much.http://www.cisco.com/en/US/products/ps6120/products_configuration_guide_chapter09186a0080...

HiI have NAC working using CTA 2.0. I need to configure a secondary ACS to act as a backup. Is there any configuration I need to manually set on the secondary ACS (apart from the logging and certificates) before I start synchronising the config fro...