Network Access Control

Hello,I have a Cisco Hardware ACS 3.2 behind a Pix 515E. I am trying to setup remote authentication from Sprints Dial-up authentication servers. I opened ports 1645 and 1646 from the outside to the ACS inside, but when they send a test, they get noth...

Hello, We are trying to impliment wireless scurity in our network. We want to issue badges with attached tokens so clients can come into our office and login to our wireless network, They would then be prompted for their login and password which woul...

Hi,Recently we introduced ACS 3.2 appliance to provide redudancy and backup to the existing ACS 3.2 Server (Win2K Server) for wireless access authentication.The ACS server will forward the authentication request from wireless clients to the Active Di...

Has anyone seen the error, "Unknown Token for import file at ..." I get this when I try to import the dump.txt or the user.txt file from ACS 3.2 to ACS 3.3 for testing. I would appreciate any help in this matter.ThanksDwane

I've tried to implement dynamic Filters on dynamic IPSEC Tunnels, terminating on a VPN 30xx Concentrator.The Configuration followed Chapter 14 of the VPN 3000 Reference Volume II.Unfortunely is no dynamic Filter downloaded to the Concentrator during ...

Hi,I have more than 100 Cisco APs (350, & 1200) all of them are IOS AP. I configured the Admin Access to the APs through the ACS 3.3.1 with TACACS+ mapped to AD. What's happening is:Admin users can login to the APs through CL (Command Line) BUT they ...

Dear AllIs the Cisco 3745 router having NM-8A/S module supports dialup user authentication and if yes what is the configuration requires.With RegardsAnand

Hi , I have a cisco 3640 NAS configured for RADIUS authentication againsta a IAS server. Up to now I've been able to set up authentication and authorization for group of users. Now I'd like to provide callback feature . I've enabled the service-...

We are running ACS3.2 and have 3 different types of NAS for each group of users (two managed dial solutions and 1 home grown VPN concentrator solution). The problem is that the two dialup NAS's require different RADIUS attributes for the IP address ...

Hi for all !. . .I became little Crazy & Madbecause i spent more than 2 week trying to run Xsupplicant to ACS 3.3 (radius) with catalyst 2950The question is:Is then Xsupplicant work with ACS 3.3 ?if yes , H O W ?( i need the Xsupplicant.conf)thank...

Hi,When using ACS to authenticate wireless clients via Microsoft PEAP (EAP-MSCHAP v2), the ACS Server requires digital certificate (digicert), which must be accessible to the ACS (1). And on top of that, separate digicert is also required for the ACS...

We have added a new gateway in the network and planning for a migration, one site at a time, so that all the HTTP traffic originated at a site will exit via this new gateway. We will be using policy routing and have setup a subnet for testing. Traffi...

We have recently upgraded from a windows based ACS server to an appliance. Now all of our 6500 catalyst switches are reporting TCP bad checksum errors when authenticating to the new appliance(it does complete correctly). We took a sniffer trace and w...

Dear all,I have a customer with wired dot1x which appears to no longer prompt for user authentication. The topology is a Radius server, Cat2950 switch and Windows XP clients. Recently, we have discovered that the PCs are not prompting for authenticat...

Hi all, I'm trying to configure wired 802.1x security on a Catalyst 4506 IOS 12.1.19(EW), using Microsoft IAS (Microsoft's RADIUS), and Windows 2000 SP4 clients. I've followed the procedures in the 4506 Software configuration guide and they seem to b...