Network Access Control

Hi everyone.I want to Authenticate and Authorize VTY-Access to Cisco devices using TACACS+. The config is pritty "straight forwasrd", BUT:I want to forward the TACACS+ Request through a NAT device and on to the "Internet" where the TACAS+ server is l...

Is it possible for MS IAS radius to assign the local ip pool to use for vpn users in Pix 7.0(1)?I would like to assing different subnets to each class of vpn user without using separate tunnel-groups and pre-shared-keys.I've tried a few different avp...

I have 2 ACS servers. And had configured Database replication between them. Past from few days the replication is not happening b/w the two. I found the following message in log files in the primary server "Cannot replicate --- server not responding.

i can authenticate the pc using 802.1x, but its not working with ip phones...waiting for your kind reply..

I have a radius server that I'm currently authenticating subscribers on. I've added a new database for administrators. How do I tell the router to authenticate against the administrators database and not against the subscribers database?

I place the above command on my switch (2950 IOS 12.1.22), but how do I tie the password back to my radius server? As I understand it, the $enable15$ user account is used when configuring your enable login to use a radius/tacacs server, but where/how...

Dear experts,I've been struggling to find out information on 3rd party authentication integration to the ACS. I know that ACS can use external databases, but this is not what I'm looking for.I have someone, who wishes to use ACS for user authenticati...

What is different TACACS+ and RADIUS?Just one thing i know is TACACS+ use TCP and RADIUS use UDP protocol.I need more information about difference of them.Thank you

I am testing wired 802.1x with the desired behavior of machine auth with user auth. I have a 6509 CAT OS 8.3(5) using the dot1x global defaults, 2 laptops one is XP SP1 and XP SP2 both with AuthMode=1 and SupplicantMode=3 with windows update as of 02...

Hi,If I use aaa for authentication, is there a fallback to the pix firewall's database if the aaa server is down, just like the IOS commands:aaa authen default group-radius local noneWill it mean that if the aaa is down, we will not be authenticated ...

Hello, I'm trying to setup on a Pix 501 running IOS version 6.3 some open ports. I want to allow from outside, any ip address access to ports 2020 and 4098. I want to have the user authenticated before the access is allowed. Is this possible? If so, ...

Hi All,Need some help how to use the DBUNLOAD utility to compress or reduce CSU database size. Our version of CiscoSecure for Unix = V2.3(3) We have old CSU installation on Solaris and running out of disk space

Hi All,we are running Cisco secure on Unix 2.3(3) version. We have around 2000 dial in users. We have bought in 2 new Cisco secure appliance ver 3.2. Can you pls let me know if you have any migration tools for migrating the users from Unix database t...

Hello, Can anybody explain what is the purpose of this command. I studied the documentation (command reference) but unable to clearly understand the purpose of this command.Thanks in advance,Regards,Mo

ACS3.2 run on winddows2000 , system shutdown usually was unexpected.I check the EVENT Viewer, it display--The data buffer created for the "CSRadius" service in the "C:\WINNT\system32\rad_mon.dll" library is not aligned on an 8-byte boundary. This may...