Network Access Control

hello allFor the last 18 months or so there's been a steady stream of folks trying to get dynamic assignment of a vlan to a user/group using Microsofts IAS Radius.Having searched thru the Netpro archives, I've never found a definitive explaination of...

Hi,We have been doing some test on our 3560G switch with 802.1X. The switch port has a Cisco IP Phone 7940 connected and at the back of the IP Phone is the PC (802.1X client).The PC authenticates with the computer name or the username properly withou...

Hello !Could you please help ? we have cisco3640 as nas, cs acs 2.6 as radius-server.Now we would need to forward authentication request to another radius-server ( username is unknown to the acs) Username is provided with a certain prefix and accordi...

Hi, I have an issue with ip pool server feature of cisco acs 3.2.x.Tha ACS server has 2 aaa clients, a vpn concentrator and a cisco ras 2522. I'd like to use in cisco secure acs an IP pool for the ras and an IP pool for the concentrator.The user logi...

I am tring to implement dot1x authentication and have configured my 2950 Switch as follows:aaa new-modelaaa authentication dot1x default group radius!interface FastEthernet0/13 switchport access vlan 680 switchport mode access dot1x port-control auto...

I am attempting to get WebVPN users to use my proxy servers. Our proxy servers (Windows Server 2003 SP1, ISA v2000) require login (normal active directory user ID and PW) to access web sites. I am getting an "HTTP 407 Proxy Authentication Required" e...

Hello,I want to configure a Cisco 1751 Router to make a Lan-to-Lan connection (172.17.124.0 LAN-Network on the Router-Side) to a VPN 3060 Concentrator (172.18.0.0 on the Concentrator-LAN-Side).The Problem: the Cisco 1751 Router is connectet to the In...

Dear All,I would like to log what user did when telnet to the router.What configuration is required to config on router and acs server to enable the accounting.Thanks.C.K.

I've configured firewall to use ACS but the firewall locks me ou when the ACS is nt availablemy question is is there any command i hae to configure on the firewal to be able to get to it when the ACS is unavailableanother question is I cannot run fir...

I have a ACS3.1.1 on W2K with corrupted database. The server is still working though (how could that happen??) Anyway, I was trying to upgrade it but failed. I tried to backup the database and restore on another 3.1.1 server but found the service cou...

Dear All,I would like to enable router login authentication using ACS 3.3 windows platform with Radius.I have config the router for AAA and I setup the ACS too. But I failed to login.Is there any configuration example on this issue?Thanks.

Hi, I have 2600 router which i am using for my internet router. configured 1 serial and 1 ethernet . ethernet is coming in my intra net. ethernet has got valid ip. and it is connected to my core. and this router is behind pix. configured tacacs on th...

I have a CAT2924XL switch with IOS:c2900xl-c3h2s-mz.120-5.wc9a.bin, I need to add it to TACACS+ running server. Does this IOS or any other support TACACS+(SSH)for this witch or it`s too old?

Hello does anybody knows some raw performance values on the ACS for Windows when I use a MS AD database instead the locally database compare to the following values (CCO info)he hardware for testing the ACS system was configured as follows:Cisco Secu...