Network Access Control

Please help !I have configured CSACS so that the admin user has to log in even on the local machine. But he can also access the server from another IP. It seemed that after 4 attempts from the second machine, the admin user has been locked out of CSA...

Folks,My customer is currently running ACS 3.1 against a Win2K domain controller external database. They are in the process of migrating to active directory. We put up a secondary ACS 3.1 server to authenticate against the AD domain controller and wh...

Hi all, I've ACS 3.3(1) on W2K platform.I've made varius test for AAA of network device TACACS+ administration and RADIUS aithentication for VPN, WI-FI peap and RAS users.All with a mapping between ACS's groups and Microsoft DB's group. All users was...

OK I have about 80 devices already working on a Microsoft IAS radius server. I have one user that needs to have access to only 20 of these devices. The other 60 I do not want them to have access to connect to. Is there a way to have the device identi...

ACS(3.3.2 build2) is RADIUS server of VPN3020 and I have many failed attemps message "CS password invlid" which from VPN client even no problem encounted.What's meaning this message and how can stop ?Thanks,

We have a certificate server running on Windows and I was able to generate a certificate for the ACS with no problems. I configured the ACS for EAP-TLS auth. My XP Pro laptop has grabbed a certificate, but I cannot authenticate via my wireless card t...

hi,i have a server acs 3.2 integrated with windows 2003(Active Directory) just to check usernames in wireless network.in AD have a policy when user make incorrect login for 3 times the account is locked, in ACS Server this parameter stay configured i...

hi,I have a question regarding aaa, pix and nated networks.I have no plans or a network yet but I'm just wondering and putting all this on paper.so WHAT IF, I have a webserver that is protected by a firewall 515e. the 515e uses aaa to authenticate us...

Hi Alli am using Cisco 3640 router.i have a problem with radius server.i did basic aaa configuration but i still have problem...the problem is 01:30:39: RADIUS: Initial Transmit id 6 171.68.118.115:1645, Access-Request, Len 6701:30:39: Attri...

I am running tac_plus on linux. I have basic configs in place and operating, but every time I telnet into a device I am presented with the User Exec prompt (router>) and I have to issue the enable command. I want to get set up so that I go straight t...

here's a good one...so within our LAN there is a secured network isolated by PIXs. Most networking devices in our LAN including these PIXs were using a csacs server on the LAN for authentication while additional firewalls and other devices inside th...

Hi all,I've the following question: is it possible to set up a replication between 2 server running the same version of ACS, but with 1 server behind a PIX running static NAT (private IP address of one server is statically mapped to a public address)...

Can anyone assist? For some reason, my ACS server displays an incorrect number of users for a group. It appears that deleted users are being counted. How can I get the correct number to be displayed?

Radius Attribute 31 (Calling-station-id) is not send by 7206!----------------------------------------------7206-NPE-G1 with Version 12.3(10b) (c7200-is-mz.123-10b.bin)Is working as a PPPoE terminator for DSLAMsOf course we're expecting all standard ...