Network Access Control

Running ACSv3.0 on W2kACS3.0 has permitted a configuration of a single HTTP port for Administration Services of 2002. The documentation indicates that:a: This configuration should not be permittedb: 2002 should not be included in the configurationc:...

I wondered if anyone can help or shed any light on the following problem.I am getting an authentication error when doing a RADIUS authentication to CiscoSecure ACS 3.3 running on a Windows 2003 server, the authentication request is coming from a Cata...

dear membersi have a Cisco Secure ACS , with DOT1X Authentication,and also UCP configured. on the ACS it shows the Password for aparticular usere has expired but users are still able to log in with this password, am i doing a mistake in the configura...

I have a 1721 router running 122-15.T14 and want to implement authorization but the router does not provide command option for list name.I want to implement the following command:"aaa authorization network groupauthor group radius"but the only option...

Can get the VPN users to authenticate locally using 'aaa authentication login vpnuser local' but cannont get it to authenticate using 'aaa authentication login vpnuser group tacacs+' I know the Cisco ACS server is responding when I telnet to the Rout...

Hi ThereI have just successfully upgraded my ACS3.2(2) to v3.3 retaining the original configuration db. Although both the ACS and ACE applications work fine individually, the ACS is not passing the user login request to the ACE server (as per the con...

Hello,we are using a C3745 with 2 E1 PRI-Interfaces andan ACS 3.2 for Radius authentication and accountingfor our dialout connects via ISDN.We are searching for a possibility to account alsothe src IP of the host which is responsible for thesetup of ...

I have a Cisco AP1200, I want admin access to be authenticated via Tacacs+ and wireless users to be authenticated be Radius. However I cannot seem to set the ACS 3.2 to accept both types of authentication for one device, either one or the other. I ha...

Greetings, Been trying to get RADIUS working on our network. All Cisco devices running 12.1(13)EA1a or 12.2(20)EW.Config - aaa new-modelaaa authentication login default local group radiusaaa authorization network default group radiusThe server is a...

I am incredibly frustrated by what should be an easy task. I have an ACS 3.2, and want to use PEAP for wireless client authentication, but have gotten nowhere despite:1. Purchasing a "WLAN" certificate from Verisign (installed in IE, untouchable in ...

I have a ACS3.2 (appliance) in my environment, would like to find out is there a free upgrade entitlement for the 1st upgrade?

Hello,how can I change the speed of the Serial Consoleof an ACS Appliance. The Docu states that the speedhas to be 115200, but my Terminal Server does not support this, so I want to configure this value.Does anybody know if this is possible, and how ...

hi,I want to find the IP adress of an unknown user, because he/she trying to make a connection a lot of times, and this is making my log file bigger.is anybody know the answer?thanks

Hi,I would like to authorize only certain configuration commands by the Tacacs Server, so in the group setup of ACS, I have checked : command, I have written in the field : configure, and declared as arguments : permit terminal and permit snmp-server...