Network Access Control

Hello, I have a 2950 and have tried in vain to confure a single port to try out dot1x authentication on it. When I set dot1x port control to auto, and check the status of the port using "Show dot1x all" command it keeps saying the port status is "n/a...

I need to update an ACS Server from v2.6 to v3.0. I need to replicate to another server. Are there any gotcha or issues?Thanx.

Two questions:1. Is it possible to configure the primary server to automatically initiate replication to the secondary servers every time there is a change in the primary database? On a related note, when csutil.exe is used to make a change to the da...

I need to configure CAR 3.5.2 for prepaid users or services.How can I set cisco-ssg-control-info attribute to control time or volume quota? (What is the notation for this configuration?)Is there any other way to configure access registrar for prepaid...

Hi All,I am trying to modify the privilege level of the commands in my router.I need to understand what is the privilege level for the commands.Is there a command in the IOS or a link with a document on the CCO with the criteria or the list of the co...

Hello,It seems that synchronisiation does not work, I have setup an FTP server and put an "accountactions.csv" file into it.The ACS downloads the file (the file is renamed into accountActions.csv.downloaded) but there is no action taken.hereafter the...

I must update my ACS from 2.6 to 3.3 and i have problem with export/import aaa database .I try with CSutil with dump.txt and setup.txt buti export/import groups and users but not aaa devicesCan someone help me ?thanks

I am getting the following error:RADIUS: unsupported accounting type 3 for user "bcxadm"aa accounting commands 15 default start-stop group radiusIf I remove the following:aaa accounting commands 15 default start-stop group radiusthe error does not ha...

Hello,I have the following components in my network and would like to build a smooth and transparant 802.1x environment for my clients:- Cisco ACS 3.2(2) with Generic LDAP external database- Cisco 2950 switches with latest IOS- Windows 2000 SP4 on th...

trying to implement dot1x on wired network with dynamic vlan assignment, very unstable. anyone with fix or similar results.

Hi I have stack of 2950 switches. I have configure tacacs for login security purpose. but i am facing problem when i open CMS web interface. I am succussfully get authenticated. but its get hang when Discovering network information dialog box comes. ...

Hi,I'm working with 802.1x over catalyst switch, ACS 3.1 as Radius and external DB users authentication on Ms Active Directory with LDAP.My questions are:1) Are the only EAP's version supported by catalyst, MD5-EAP and EAP-TLS (not PEAP and LEAP);2) ...

Under Shared Profile Components/Shell Command Authorization Sets in ACS, is it possible to enter a wildcard for further arguments.For example, say you want to permit show cam [+ all arguments], is it possible to configure show, then 'permit cam *' as...

I have a VPN Concentrator 3005 that I have two groups configure, one uses internal authentication and the other kerberos/ad. The group that uses internal authentication can login without issue using the WebVPN, the group that is configure with kerbe...