Network Access Control

Hi I have a ACS v2.6 I would like to upgrade to a newer version 3.x or better. My question is do I have to purchase this new version? Can I download it for free from cisco? Which steps do I have to follow in order to upgrade this version???thanks a l...

Hi,We're implementing a NAC (framework) pilot and are experiencing clients that fail re-authentication with the following in the failed-attempts ACS 4 logging:"Access denied: fast-reconnect was successful but user was not found in cache"From what I s...

I have enabled "aaa authentication exclude" commad statement on PIX (6.3).This excludes the Hosts for which the Firewall doesnot prompt for authentication.What is the best way to add more lines into it.Do i have to remove all the commands and then al...

Dear Friends.... i am facing a problem in my ACS System .... the thing is thati am giving access through VPN and users can access to local resource and they are been Authinticate through the WINDOWS ACTIVE DIRECTORY but suddenly they can not access w...

How do I configure our ACS 4.0 server (and 2950 switch) to assign an 802.1x authenticated user to a specific vlan based on the AD group that the user is a member of in the Windows Domain?Example, Joe.Schmoe is an AD member of the group 'Sales' which ...

Hello Team,Please let me know whether I can configure Show Running-config at level 10 login. How can I see what all commands are available at a level other than 15. In other words what all command can be authorized at a level other than 15?Can I conf...

Okay here is a weird one:We use ASA'es for both IPSec and SSL VPN. The device use Radius against ACS for user authentication. The user database pulls from Active Directory. We also use the same ACS for TACACS for routers (also pulling passwords from ...

I'm currently testing 802.1x in our evironment and one of the things I want to do is mac-address authentication (basically a machine trying to connect to a port has to come up against our ACS server with these addresses). I can get it to work but for...

I am installing ACS V4.0 on WIN 2003 server. All the browser requirements ( IE V6.0, SP1) is present.But it is not displaying the initial configuration screen after installation.No errors etc. Then we try to change the various browser settings withou...

Its a client to PIX setup and i need to be able to connect to a server on the LAN. when i connect woith cisco vpn client it authentiate right away and i get an address from the VPN pool but i cant access or ping anything, not even the LAN interface o...

With the appliance coming into line with the server version of the ACS, what are the advantages of one over the other? I know the advantage to the engine is security hardened device. This doesn't matter to me. I want to know the advantages you have f...

Has anybody got this working yet.I have tried but as yet have been unsucessful in registering csm with the ACS server.I am following the the instructions however, nothing seems to work all i get is failed to registar.Any help would be appreciatedRega...

I have a cisco vpn which was working great. Now only one particular user can get in all the other users (even new ones) get the 413 user authentication failed error when logging in. Does any one have any ideas?Thanks

I am tring to run an auto exec command when I login directly to the console I want to be authorized directly to the enable mode. Authorization to the telnet directly to the enable mode works fine from telnet just not from the console. Below is my rel...

It seems my certificate just expired, so when i try configuring sensing interfaces for 5.x sensors i get the following error: Object loading failed. An error occurred trying to get the interface information. An error occurred while trying to determin...