Network Access Control

Set up ACS to authenticate users agains an AD database.When using an invalid account name to log on to a device (switch), I see "External DB user invalid or bad password" in the ACS Failed attempts log but there is nothing in the Security logs of the...

We've just received this ACS server and upon looking up the install guide book, it's stating that "should not use monitor/keyboard/mouse" to connect to this ACS server but it does not say how do we get in this box to config ? we thought we could use ...

In ACS V3.3 I have an admin group.In the TACACS+ Settings I have configured , shell exec and privilege level 15, but when the users log into the router they get a level of one. Is ther another parameter I am missing?

I have following configuration: Catalyst 2950G-proximity switches with IOS 12.1(19)EA1c. Cisco Secure ACS Appliance 3.2.3.11 SunONE Directory Server ldap server version 5.2_Patch_2 I am trying to setup 802.1x authentication for wired and wireless cli...

HiI have a requirement similar to the way APs use MAC authentication on the ACS/RADIUS box. I want the switch to authenticate a "sensed" MAC address on a switchport using RADIUS. I assume that on RADIUS you'd have a list of MAC-Address "users" and ...

Hi,I need to allow and deny some user to go to the Internet, but I want to allow/deny only for http traffic.For exemple I dont want any user to have to authenticate if they want to use ftp.Is it possible with the auth-proxy? if yes any configuration ...

Can ACS 3.3 support nested groups within an external database (Active Directory)?For example, if I have map the AD group of Remote Users and that group is made up of groups New York and London, will it map correctly to Bob who is in the New York grou...

I have AAA configured to use Tacacs+ on a 7206VXR, when we telnet to the router and enter the user name and password it takes us to enable mode. When connected to the console it takes us to exec mode, then requires a passwrod to enter enable. Here ...

Could someone point me to a link for ACS install/config ? this is my first time. Is it very straight forward ? Thanks in advance.

Does anyone actually have this working ? Following the Cisco steps this will not work.

Hi,I want to use two ACS Servers, being able to synchronize permanently their internal user databases, so in case of failure, it would be transparent to the users.I think it is possible, but can you confirm it to me and could you give me an URL for t...

I seem to remember reading there was an issue with this but can't locate the reference. I want to receive accounting records on Administrative users on a PIX (6.3) on our ACS server just like for Switches, APs, etc. We do have TACACS authentication...

we have a wired 802.1x network with cat6500(Hybrid) and cat4000(SUPII). The authentication server is a IAS RADIUS server. So everthing is working fine but on the IAS we have a lot of failed attemps which are filling the log from a client (ab...). So ...

Is there a way to use ACS 3.0.3's csutil.exe text export capability to export data from ACS on Windows 2000, and then import it into Windows 2003 where ACS 3.3.2 has been installed? This would eliminate the need to do an interim upgrade and provide ...

To do EAP-TLS testing (without having to set up the certification authority server infrastructure ). I need Demo Certificates ( Client & Server ). I have tested the Cisco Certificates located at http://www.cisco.com/warp/public/cc/pd/sqsw/sq/tech/tce...