Network Access Control

Hello all,could you give me advice ifit is possible upgrade ACS from ver. 3.0 or 3.1to 3.2 and preserve current configuration on ACS.So I mean only upgrade I do and everything willwork like before.rgjl

Hello, How we can associate a fixed address for VPN client.We use a radius server for authentification and PIX 515ETHANKS

Greetings All,Am wanting to modify user profiles -- specifically, I am looking to apply or modify password expiry dates.I understand the general profile structure and syntax, however, I am not able to modify the profile line to include the expiration...

Hello.My TACACS server is a ACS 3.3.2. I have associated two Active Directory groups to two of the ACS groups.1. I need to give full telnet/ssh and console rights to Group1 to our IOS and CATOS devices.2. I need to allow Group2 to sh only the SHOW co...

I am setting up a LAN to LAN VPN between two remote sites and our main office. There will be multiple computers connected in each branch office.There will be a firewall connected to the head end VPN router in the main office. The tunnels should be up...

We are configuring ACS for use with external user datbases (e.g., Active Directory) in an environment with multiple domains and no trust between them (multiple business units).- Can ACS access mutliple domains (of the same or different type), with th...

The web page provided by the router using Auth-proxy is too simple? Can I redirect users to a customized Web page using auth-proxy?

I am trying to figure out why it takes about 20 seconds for my login prompt to come up when telneting to my cisco switch using tacacs.

Hello,We have CiscoSecure v3.2(2) Build 5 on w2k.We sent the log file to a sql server via odbc to make logs analysis.But when we stop or reboot the sql server, the authentication radius or tacacs doesn't match anymore until the server is again availa...

Hi all,Have recently installed the ACS Solution Engine. Customer needed to use AD as an external d/b for aaa authentication for engineers accessing their cisco boxes.I have setup according to the documentation from cisco. Installed a remote agent to ...

Hi everybody:I have a PIX 525 with 6.3(3) and two cisco secure appliance as aaa-servers.The problem is that the PIX in sometimes the authentications is trough the CS1 and sometimes is through the CS2, in both cases both cisco secure is up and running...

Hello!Could someone explain me what happened when we use user certificate authentication via ACS and AD as an external database.For example i have configured 802.1x with EAP-TLS authentication type. I know enough (i hope about EAP conversations betwe...

Hello everybody,this the first time I write on this forum, so please excuse me if I do something wrong.My objective is to authenticate servers in my customer's server farm, so that none can put an unauthorised server in place.I am thinking about usin...

When clicking on External User Database, then on Database Group Mappings, I have the following error :"Could not edit the resource because the Group Mappings are being configured elsewhere."I need help please because I am stuck !Thank you,Patrice

Hi I am looking for a really basic AAA Radius login configuration for my Cat4507 to authenticate to MS IAS.I have reviewed all documentation on cisco website and am clearly having trouble understanding this!!(user error)Btw, I can ping my raduis serv...