Network Access Control

Can proxy authentication be triggered via https as well as http? The document below on auth proxy only mentions http. But the following document on https shows that https is triggered by adding secure-server parameter to the end of "ip http". "ip htt...

Has anyone seen this issue of when connecting to the ACS 3.3 Mgmt GUI with a Mac Browser (Safari, or Firefox) that they get an error "Invalid Administration Connection". However at times from the same machine, Firefox works fine, but Safari doesn't w...

hi i am facing a problem. i have a acs server v3.1. the problem is that sometimes our internet users who r authenticated by our acs server, doesnt get any prompt of authentication i.e. acs server stops responding. after restarting acs server everythi...

Expert,We have existing L2TP feature working fine with CAR3.0R4, but in the new system with CAR 3.5, L2TP has failed.Do we need additional attributes or license to use L2TP in CAR 3.5 ?

HiI am using an authentication proxy to give access to the internett for guest users of a wirless Lan. Everything appears to be working well a part from the access lists being generated by the ACS server. These are being placed on both the wirless ne...

On a VPN client configured for mutual group authentication to a VPN 3000 headend, is it possible to restrict which root certificate is matched against the VPN concentrator's identity certificate?Background: multiple CA root certificates are installed...

I am trying to set up authentication for VPN clients (software) to a Cisco 3005 concentrator through MS RADIUSon win2k server. I have gone through the Cisco example configurations, which workedgreat for setting up hardware clients, but is not working...

Hi, Guys,We’ve got a LAN with about 100+ Switch on the 3 layers. Currently, the AAA model is non-ACS/Ciscoworks Local. We’re concern about security improvements. I am thinking possibly to move the non-ACS to ACS. Weighing both of them, I got to a poi...

I'm trying to authorize users on a vpn against MS active directory through an ACS. I can get RADIUS authentication to work, but I need to be able to limit access based on user, and so far all I'm getting is just authentication. Is there a way to map ...

Hello, Do you know if the ACS ver2.6 supports both tacacs+ and radius authentication at the same time. I have a feeling that it might be one or the other.Thank You.Donagh

Hi there.I'd like to know if is possible to use a cisco router as a Tacacs+ instead to have a unix server? Can I configure all the user name and passwords into a router 26xx or 36xx and configure the rest of the routers in my network to go to validat...

Hi everybody,would it be possible for anyone to help me with the Cert. Authority installation for the SSL (web Admin)? i can see the CA installed properly in the "Edit Certificate Trust List" but each time (after restarting the ACS service) i still g...

We have the current situation: - using Cisco ACS Unix 2.3.6- external Authentication RSA ACE Server VPN 3000 for VPN Access - uses radius dictionary IETFLucent Max 4000 for RAS - uses radius dictionary ASCEND Currently depending on NAS we can provide...

Hello,Is there a way to quickly upload AAA client instances from my old ACS to my new ACS. They are both stand alone servers and after transferring the AAA clients to the new ACS I plan to permanently take the old ACS offline. Is it possible for me t...