Network Access Control

I want to ask about limitations of Cisco ACS server 3.3 . I use ACS server for Radius authentication, and has a limit 80 authentications per second. But at peak time i need 150-200 authentications per second. Is this a software limitaion or changed d...

I have 2 ACS 4.0 servers that are in production. Every 4 to 5 weeks user are suddenly unable to authenticate using EAP-TLS. When I check the failed attempts log the error message is "external user not found". I reboot the servers and everything is...

Problem: I'm having problems getting one of my Catalyst 6513 switches to authenicate with my ACS server.Background: I've got two Cisco ACS servers and several hundred switches on my network. All of my switches (except teh 6513) can authenticate with...

Hi,we have some new HP ProCurve Switches in our Network and we want our Cisco ACS RADIUS-Server to do their (vty) login-authentifiction.Unfortunately I'm not familiar with the Cisco ACS and I also don't know which VSAs are needed by HP switches.Can a...

I've created and mapped security groups in active directory DomainWirelessOK and DomainVPNOK. I mapped those to ACS_Wireless and ACS_VPN.In my production environment, currently all users on ACS authenticate using "Default Group". What's the best way ...

Hi.How i can to route a Accounting Request to a service in base to Group or Profile of the User? The Cisco documentation says how do it in base toIP-Nas, realm, but i need (for example) send a Accounting request of user CISCO to a "TESTACCO" serv...

I need to work on a project to implement AAA for VPN and Wireless users.I configured ACS 3.3 and Active Directory Groups accordingly.I do not have a Cisco VPN 3000 concentrator or wireless access-points available in the lab.Can someone suggest a crea...

ProductCisco Access Registrar (Standard Version)AR-Standard 3.5 AR-CPU 3.5 How to add a VSA under [ //localhost/Radius/Profiles/Test-Profile/Attributes ]From User-guideAccording to Table A-1 Tcl Attribute Dictionary Methods addProfile $dict addP...

On ACS 3.3, I renamed and mapped ACS_Wireless and ACS_VPN3000 to my respective Active Directory security groups DomainWireless and DomainVPN3000. I want to let only members of these groups have access to those services. Following the ACS documentatio...

Is the OS on this appliance even accessible for management? Can services, such as snmp, be enabled? How does one back this thing up? Not having any luck looking through the documentation. Any help would be appreciated. Thanks

We recently purchased 2 new servers to replace our older ACS servers. The new servers are running Windows 2003 SP1 and we purchased ACS 3.3.2 for these 2 servers.Primarly they are authenticating for Dial-In clients through AS5300s. The servers are ...

ACS 4.0 for windowsIssue:Authentication getting failed for external database (windows AD) user. Error:Getting authentication failure code as: ?Internal error?Cisco.com Document says ?authentication not processed for error code 4Following are the step...

Hi,i was going through the Trust & identity management solution and i stopped when i read the IBNS is important for the 802.1x.i really didn't understand the function of the IBNS coz i know that Cisco ACS works fine with 802.1x and can take care of t...

Pls, does anybody know how to configure exec and privilege level command authorization based on local user database.I tried that, but I haven't done it yet.pls., write me a short step-by-step procedure.Here is commands which I have configured. Someth...

My customer has a Cisco ACS Server for Windows V3.3.x and operates a Windows NT4 Multi-Domain Environment.According to the Remote-Agent prereqs it does only support the Cisco Secure ACS Solution Engine. What options do I have implementing 802.1x with...