Network Access Control

Anyone care to mention what works well and what doesn't for alternatives to the default enable/exec password scheme in IOS? I've got RADIUS authentication working on an AP1200, and am thinking of using it elsewhere, but I'm concerned about what happ...

We want to be able to make a log of system admin config commands as and when they are made. We plan to use RSA SecureID for Authentication. Do we need ACS for this or can it be done without ACS?Thanks

Hi, I installed ACS3.3 on windows 2003 standard server and it joins Windows 2000 Active Directory. It works normally when it is using Cisco Secure Database. However, it can't authenticate users located in windows 2000 AD. Is my combination supported ...

Hi guys,could you tell me, how to configure my EZVPN Server to work with rsa-sig authentication. It work perfect with pre-share. Is it possible to tork with RSA authentication. I'm using Cisco VPN Client at EZVPN Remote appliance.See attachments for ...

I use the CISCO Secure ACS 3.3 for windows and 2511 as a Network Access Server with sixteen host map for reverse-telnet. All people use the reverse-telnet connect to my routers. i just want some people can login a part of the routers. I look for som...

I have set up ACS to control access to my local LAN users who connect to the network via c2950 switches.I have configured the default Time-of-day setting to stop local LAN users logging in before 7am, I have followed the instructions in Cisco documen...

Hi everyone, I'm doing some testing with 802.1x authentication on a Catalyst 3550 switch, using an eval version 3.3 of ACS (windows version). I do have it working, however, it appears that I'm forced to essentially, login to the network twice. Once w...

I am using the CiscoSecure ACS v3.3 build 11 on Windows to handle authentication of some network devices. I had added in a VSA for our 3Com 4400-series switches which allowed us to authenticate against our Windows AD for administration of the switch...

I'm having a problem getting in SDM through tacacs (acs 3.3) Logging in via CLI (tacacs) works fine. When i put http authentication to local all works fine, I'm using the following sttings:!aaa authentication login default group tacacs+ localaaa aut...

I have a VNP concentrator, an ACS 3.2 server and a Novell eDirectory tree. My goal is to allow my VPN users to use their Novell name and password to log into the vpn or webvpn.I currently have my concentrator use an external RADIUS source for authen...

HII am configuring command authorization for our FWSM and switches. I seem to have it working OKish for the FWSM but I think I´m nissing something as far as the Switches go.I basically have a user in a group which I have configured as follows under "...

If you have an ACS aplliance and do you want to use a base of external data base Activate Directory, it´s necessary install an agent where it be been located the Activate Directory, If you have more Activate Directorys installed it in other machin...

I would like to perform the following in our environment. I currently have CS ACS Appliance v3.3. I plan to install CS Remote Agent on a Windows 2003 Domain Controller for the backend authentication database using A/D.Goal: I want to use the ACS t...

R5 dials R2.R2 is supposed to authenticate R5 and then callback to R5.So far I see that the problem is the ACS tacacs+ server. Authentication failed...03:52:55: TPLUS: Using server 10.1.1.10003:52:55: TPLUS(00000070)/0/NB_WAIT/65435178: Started 20 se...