Network Access Control

hello All,is there a way of using Cisco ACS 3.3 on Win2k server to use the CLI part of a NAR to restrict access based upon users MAC address? I have a Cisco Router forwarding on radius requests to the ACS.Thanks,Russell.

Is there any IETF defined Radius AV Pair which allows me to configure Multiple NAS IPs ? There is a Cisco AV Pair for the same but my LAC cant understand those.

Is it possable to setup the ACS server to respond on different IP addresses for different clients. I.e we have a group of devices which should communicate with the ACS for TACACS+ AAA on address 1 and a compleatly different group of devices that need...

I would like to set up the ACS SE to authenticate against a MAC OS X user database. How could this be done? Is a third party radius software needed?

hi, I would like to using MS AD account as a tacacs authentication account. I use tac_plus-F4.0.4.7 on Freebsd. Does anyone get some ideas? thank you!

Testing 802.1x. I have Windows supplicants that authenticate against an ACS server that is tied into the Windows domain user/groups database.I notice that at times the switch (Catalyst 2950 EIs running IOS) puts the port into the guest vlan. I have t...

Hi guys,We want to have a fallback user if our Tacacs is not reachable. Now we found out, that with more than 50 percent of our CATOS devices local users are not supported. Is there any other way of introducing a fallback? Especially with CatOS Versi...

Which product would you recommend?I'm wanting to include proper management of dial-in users with respect to authentication , authorisation and network security? We use multiple services.

Currently piloting wired 802.1x using Cisco ACS 3.3 for RADIUS, Catalyst switches, and 2000/XP/OSX built-in 802.1x supplicants.Built 2 ACS servers for redundancy, but notice when I down the "primary" server, ports do not get authorized as quickly as ...

Hello All,We have a solution where home users connect via ATM onto our network. Currenty their radius requests are passed onto Cisco ACS 3.3 and they are authenticated using RSA SecurID Fobs to an ACE server.I am trying to look at an alternative to u...

Is there a way to us the Microsoft AD OU groups instead of using the old NT groups to dynamically mapping users to the ACS groups? We are using ACS server at vers 3.2 as well as some test server on 3.3.

2 x ACS (Version Release 3.3(2) Build 2, on win2003 standard Server)in a wired 802.1X environment. CatOS 8.4(8)GLX.WS-C2980G-AConfiguration:#radius set radius server 10.201.66.100 auth-port 1812 set radius server 10.201.34.39 auth-port 1812 primarys...

why does my cisco3640 router(ios version 12.1(3)) have no commands like "ip auth-proxy xxx"? thanks for any help!!!

Hi What is the best upgrade solution here? we will be running the new database on new hardware.Will we have to upgrade the old system to an intermediate version(s) and export somehow or is there a way to export directly?All relevant advice appreciate...

Hello,We have multiple sites, with multiple APs (1100 & 1200's mostly). We would like to be able to restrict RADIUS users to specific sites or even specific AP's within a site. Each site has it's own unique subnet (ie: site 1 is 10.100.1.0/24 and sit...