Network Access Control

Expert,We have existing L2TP feature working fine with CAR3.0R4, but in the new system with CAR 3.5, L2TP has failed.Do we need additional attributes or license to use L2TP in CAR 3.5 ?

HiI am using an authentication proxy to give access to the internett for guest users of a wirless Lan. Everything appears to be working well a part from the access lists being generated by the ACS server. These are being placed on both the wirless ...

On a VPN client configured for mutual group authentication to a VPN 3000 headend, is it possible to restrict which root certificate is matched against the VPN concentrator's identity certificate?Background: multiple CA root certificates are installed...

I am trying to set up authentication for VPN clients (software) to a Cisco 3005 concentrator through MS RADIUSon win2k server. I have gone through the Cisco example configurations, which workedgreat for setting up hardware clients, but is not working...

Hi, Guys,We’ve got a LAN with about 100+ Switch on the 3 layers. Currently, the AAA model is non-ACS/Ciscoworks Local. We’re concern about security improvements. I am thinking possibly to move the non-ACS to ACS. Weighing both of them, I got to a po...

I'm trying to authorize users on a vpn against MS active directory through an ACS. I can get RADIUS authentication to work, but I need to be able to limit access based on user, and so far all I'm getting is just authentication. Is there a way to map ...

Hello, Do you know if the ACS ver2.6 supports both tacacs+ and radius authentication at the same time. I have a feeling that it might be one or the other.Thank You.Donagh

Hi there.I'd like to know if is possible to use a cisco router as a Tacacs+ instead to have a unix server? Can I configure all the user name and passwords into a router 26xx or 36xx and configure the rest of the routers in my network to go to validat...

Hi everybody,would it be possible for anyone to help me with the Cert. Authority installation for the SSL (web Admin)? i can see the CA installed properly in the "Edit Certificate Trust List" but each time (after restarting the ACS service) i still g...

We have the current situation: - using Cisco ACS Unix 2.3.6- external Authentication RSA ACE Server VPN 3000 for VPN Access - uses radius dictionary IETFLucent Max 4000 for RAS - uses radius dictionary ASCEND Currently depending on NAS we can provide...

Hello,Is there a way to quickly upload AAA client instances from my old ACS to my new ACS. They are both stand alone servers and after transferring the AAA clients to the new ACS I plan to permanently take the old ACS offline. Is it possible for me...

I have configured my vpn concentrator to use M$ ias so users can authenticate using Acitve Directory. User with the software client are able to connect using active directory. web vpn users are unable to login using active directory but can login u...

HI allI am just implementing a solution which requires BGP peers with a PIX firewall between them. This solution works fine when I do not use a MD5 password on the peers but when I put password authentication on the peers the BGP neighbours no longer...

Hi All,does anyone know what minimal ACS version is required NAC 2. Great thanks,M.Immer

Is it possible to configure a catalyst 4500 for example, to be a AAA Server and hold a local username and password database for other switches/routers to authenticate against?ThanksWayne