Network Access Control

Hi,we have some new HP ProCurve Switches in our Network and we want our Cisco ACS RADIUS-Server to do their (vty) login-authentifiction.Unfortunately I'm not familiar with the Cisco ACS and I also don't know which VSAs are needed by HP switches.Can a...

I've created and mapped security groups in active directory DomainWirelessOK and DomainVPNOK. I mapped those to ACS_Wireless and ACS_VPN.In my production environment, currently all users on ACS authenticate using "Default Group". What's the best way ...

Hi.How i can to route a Accounting Request to a service in base to Group or Profile of the User? The Cisco documentation says how do it in base toIP-Nas, realm, but i need (for example) send a Accounting request of user CISCO to a "TESTACCO" serv...

I need to work on a project to implement AAA for VPN and Wireless users.I configured ACS 3.3 and Active Directory Groups accordingly.I do not have a Cisco VPN 3000 concentrator or wireless access-points available in the lab.Can someone suggest a crea...

ProductCisco Access Registrar (Standard Version)AR-Standard 3.5 AR-CPU 3.5 How to add a VSA under [ //localhost/Radius/Profiles/Test-Profile/Attributes ]From User-guideAccording to Table A-1 Tcl Attribute Dictionary Methods addProfile $dict addP...

On ACS 3.3, I renamed and mapped ACS_Wireless and ACS_VPN3000 to my respective Active Directory security groups DomainWireless and DomainVPN3000. I want to let only members of these groups have access to those services. Following the ACS documentatio...

Is the OS on this appliance even accessible for management? Can services, such as snmp, be enabled? How does one back this thing up? Not having any luck looking through the documentation. Any help would be appreciated. Thanks

We recently purchased 2 new servers to replace our older ACS servers. The new servers are running Windows 2003 SP1 and we purchased ACS 3.3.2 for these 2 servers.Primarly they are authenticating for Dial-In clients through AS5300s. The servers are ...

ACS 4.0 for windowsIssue:Authentication getting failed for external database (windows AD) user. Error:Getting authentication failure code as: ?Internal error?Cisco.com Document says ?authentication not processed for error code 4Following are the step...

Hi,i was going through the Trust & identity management solution and i stopped when i read the IBNS is important for the 802.1x.i really didn't understand the function of the IBNS coz i know that Cisco ACS works fine with 802.1x and can take care of t...

Pls, does anybody know how to configure exec and privilege level command authorization based on local user database.I tried that, but I haven't done it yet.pls., write me a short step-by-step procedure.Here is commands which I have configured. Someth...

My customer has a Cisco ACS Server for Windows V3.3.x and operates a Windows NT4 Multi-Domain Environment.According to the Remote-Agent prereqs it does only support the Cisco Secure ACS Solution Engine. What options do I have implementing 802.1x with...

I have enabled TACACS and it is using different interfaces to connect to the tacacs server, can I force loopback interface to use for tacacs, if so what command I would use.Thanks.

On ACS 3.3, I go to main menu, I choose "Interface Configuration".I make sure that "IETF RADIUS Attributes" is selected.Then I refresh the browser, I go to "Group Setup".On the top of the page, I attempt to pick "RADIUS" configuration. However it doe...