Network Access Control

Hello All...I´m configuring VPN PPTP on Cisco Router, and when I configure authentication LOCAL, it is work fine.Now I want to use Radius Server, and I have this configuration:!aaa new-model!aaa authentication login default localaaa authentication pp...

When a user logs into a AAA client via CNA, the AAA client sends Passed Authentication information to ACS 3.3 sometimes two and three times a second.Has anyone ever seen this before?I have tested CNA by logging into different model switches with diff...

Hi Everybody?Does ACS 3.3 support " Entrust Entlligence Security Provider 7.0 for Windows " as strong authentication server?What about 4.0 ?Thanx in advance.Jarle

I try connection to a PIX501, but after authenticating with username/password I get "403: unable to contact the security gateway".In the Cisco VPN client log I found the following indication something's wrong, the rest of the log seemed OK...43 2...

Customer wants CSACS-4.01-WINUP-K9 (Upgrade to CSACS 4.0 for Windows from 1.x 2.x 3.Xand CS Unix).What version is Cisco currently shipping when CSACS-4.0-WINUP-K9 is ordered?If 4.0 is shipped, how do we upgrade the Customer to 4.01?If 4.02 is shipped...

I'm using a VPN 3000 Concentrator with Kerberos authentication (AD). 1 user cannot authenticate, all others do just fine. When I use the test feature on the concetrator, I get "Authentication Rejected: Unspecified." Any suggestions?

Hi,how I can configure the speed and duplex on the cisco appliance CSACSE .ThanksOmar

HI,It is possible to upgrade from CS ACS 3.3 to 4.0 on ACS sOlution Engine 1111, which is EOS since end 2004???If not should I upgrade first the HW from 1111 to 1112 and then the ACS?

Hi All,Just a quick question on the 'Backup' feature of Cisco Secure ACS 4.0.What exactly does this backup. Does it only backup user and group settings, or does it include Network Access Profiles, Posture Validation settings, etc?Any help would be ap...

We are currently evaluating the MARS solution. We are also interested in migrating our current ACS deployment to the appliances to get away from very frequent windows related maintenance tasks. However, I have seen multiple times in my quick browsi...

Hi, my customer has a problem on a FWSM 2.3.3.2.He uses a script to manage his acls.access-l mode manualno access-l inside_auth_acl access-l inside_auth_acl deny <whatever_to_deny > access-l inside_auth_acl permit ip any any access-l commitAfter manu...

hello,I want to add a router with new shared-secret on acs, but acs brings error message, that this device is already learned via wildcard-shared-secret.how can I delete this wildcard-learned one from ACS DB to get it added with new shared-secret ?re...

I am just wondering if anything changed by the time this link was posted:http://www.cisco.com/en/US/partner/products/sw/secursw/ps2308/products_data_sheet0900aecd801a9de9.htmlregarding IOS support of active directory authentication for CVPN client. I...

Hello,I'm using tac_plus and want to use my own script for authorizing users, based on the NAS and based on the command a user enters.The documentation mentions fields that can be passed to a script (like user, name, port etc) and that works geat, bu...

Hi all,Currently we have username/password authentication for our dialup users using AS5300 via ISDN lines to the Cisco ACS. However, we are thinking doing CAT card authentication with a built-in reader on the keyboard and the user can swipe their C...