Network Access Control

I have searched for an explanation of the following command, but it is not available on the command lookup tool:radius-server attribute 55 access-request includeCould somebody enlighten me on the meaning of this?Thanks

Hallo therejust a short question:Which bit size and which digest should I use and what are the reason for that. I would like to use the ACS for PEAP and https access.many thanksoliver

I have manage to get wired 802.1x working using Windows Active Directory as the database. With machine authentication, single-signon can be achieved.Setup:C3750 switch - Cisco ACS 3.2 - Windows ADSequence of events:1. 802.1x machine authentication2. ...

Hi,If I configure following command, how can I enter enable user name and password to get into enable prompt? Can someone explain to me how to enable tacacs autherntication for enable access?"aaa authentication enable default group tacacs+ enable", T...

Hi everyone.I want to Authenticate and Authorize VTY-Access to Cisco devices using TACACS+. The config is pritty "straight forwasrd", BUT:I want to forward the TACACS+ Request through a NAT device and on to the "Internet" where the TACAS+ server is l...

Is it possible for MS IAS radius to assign the local ip pool to use for vpn users in Pix 7.0(1)?I would like to assing different subnets to each class of vpn user without using separate tunnel-groups and pre-shared-keys.I've tried a few different avp...

I have 2 ACS servers. And had configured Database replication between them. Past from few days the replication is not happening b/w the two. I found the following message in log files in the primary server "Cannot replicate --- server not responding.

i can authenticate the pc using 802.1x, but its not working with ip phones...waiting for your kind reply..

I have a radius server that I'm currently authenticating subscribers on. I've added a new database for administrators. How do I tell the router to authenticate against the administrators database and not against the subscribers database?

I place the above command on my switch (2950 IOS 12.1.22), but how do I tie the password back to my radius server? As I understand it, the $enable15$ user account is used when configuring your enable login to use a radius/tacacs server, but where/how...

Dear experts,I've been struggling to find out information on 3rd party authentication integration to the ACS. I know that ACS can use external databases, but this is not what I'm looking for.I have someone, who wishes to use ACS for user authenticati...

What is different TACACS+ and RADIUS?Just one thing i know is TACACS+ use TCP and RADIUS use UDP protocol.I need more information about difference of them.Thank you

I am testing wired 802.1x with the desired behavior of machine auth with user auth. I have a 6509 CAT OS 8.3(5) using the dot1x global defaults, 2 laptops one is XP SP1 and XP SP2 both with AuthMode=1 and SupplicantMode=3 with windows update as of 02...

Hi,If I use aaa for authentication, is there a fallback to the pix firewall's database if the aaa server is down, just like the IOS commands:aaa authen default group-radius local noneWill it mean that if the aaa is down, we will not be authenticated ...

Hello, I'm trying to setup on a Pix 501 running IOS version 6.3 some open ports. I want to allow from outside, any ip address access to ports 2020 and 4098. I want to have the user authenticated before the access is allowed. Is this possible? If so, ...