Network Access Control

Hi,in an environment where we have a catalyst Switch, an ACS Server and a Win2000 or XP Client, is it possible to set up 802.1x machine authentication without client being part of a ADS ?is it possible to do machine authentication only with certifica...

I'm just looking for some clarification here - as far as I know Cisco doesn't support what I want to do (although you can do it on other switches like Foundrys) but I'm still unsure and hopefully somebody here can give me a definite answer.What I'd l...

Hi, Anyone knows how to export AAA clients from ACS into a TXT file. I know ACS can do it for users but I can't the way for AAA clients.

Hello,I tried to setting rsa secured with remote access dial-in service on cisco 2600 box. Everything works well except when token in new pin or next token mode. The dial-up client can not enter second passcode, do not have second pop-up window, so a...

Hi.How i can limit user profile level to do only some kind of command with PDM and CLI?I need to use AAA but how?Thx.

I'm trying to load Vendor Specific VSAs into my ACS SE 3.3 box, using a csv file. I've created the following file, which I think should work, however it doesn't. I place the file in an ftp root directory, configure my ACS device to grab it from the...

Hello,I have an ACS serving as AAA server for a C3620 router serving as RAS. This ACS is giving the same IP address to different clients. Here you have the output of the 'sh users'where you can see this problem.R3620CTP01#sh users Line User ...

Hi...I want to restore data and config. (.dmp file backed up at ACS ver 3.0) to ACS ver 3.3, but the following System Restore error appear "This backup file is not for this version of CiscoSecure v3.3".I need your helpThanxAbd Alqader H.HNetwork admi...

ACS for Windows has a great uitilty called CSUtil.exe whereby all the users can be exported to a file called users.txt from the userdatabase.Also ,when working with large user databases such as 30000 users, the CSutil came in very handy in regards to...

Hi.I'm trying to make a profile with privilege 2 to permit a user to do some modification to configuration file.I would like to permit user to issue command "write terminal" to show the conf, but when i create profile level 2 privilege with command"p...

I use Cisco Secure ACS with Tacas+ to authenticate dialin users on a Cisco2610.While doing authentication locally on the router everything works fine: Windows users dial in, are validated, get a callback and even multilink with compression.When ACS i...

Hello,we use ACS 3.2 to validate users logging into routers and switches against a windows AD database. This works perfect.But when validating Dial-IN Users we see a record in the "Failed Attempts" Log stating: "Auth type not supported by External DB...

I set up tacacs+ authorization on the WDS and it works great. When I tried to set it up on the infrastructure ap1200 I am unable to login unless it is as a locally defined user. I have attached some config info from the infrastructure AP Version 12.2...

Does anyone have a quick answer to ACS licencing without me going through Cisco Sales ? Can we install ACS on a different machine at different location but not use it and keep it for DR purposes ? Does it void licence agreement ?Serhat

Hi.. My name is Fabio, I work on brazil like network manager. I placed Tac_plus to work on Linux, because it is needed to restrict some users accesses to routers. In the first case where users are able to give show and config commands referring "RTR"...