Network Access Control

I have two sites, each with a Pix501 running Pix 6.3.The two sites have a lan2lan tunnel with pre-shared key between them. Cisco vpn clients should be able to connect to either of the two sites - choice of site is depending on which site they need ac...

Have you had any experience w/ the following:Citrix Users accessing our Citrix Servers externally are first prompted w/ Firewall Authentication before authenticating on the Citrix Farm. If a user's password has expired he/she will be unable to authen...

Hi,I have applied 802.1x on Cat4500 and cat 3750 and i need to use Wake on LAn to load software on my Pc's.I what i have to config?Thanks

Where can one find the ACS-Windows Remote Agent download. ?

I'm trying to connect Cisco VPN 4.6.02.0011 clients to a Cisco PIX 501 v6.3(4), using RADIUS to an internal Microsoft 2003 IAS, configured according to http://www.cisco.com/warp/public/110/cvpn3k_pix_ias.htmlWhenever a VPN client tries to authenticat...

I need to allow some users to set the port vlan but restricting them to create the vlan. This is what I want to achieve..set vlan <All Vlan> <All modules>/<All ports>currently, I am permitting (permit vlan *) as a temp solution for them to do their j...

Hi allWe setup TACACS+ authentication by following this link http://www.cisco.com/en/US/tech/tk59/technologies_tech_note09186a00800946a3.shtml .We noticed there are some authentication failures among couple hundred success. From the TACACS+ log file ...

Hi,I use Cisco Secure version 3.2 on windows 2000I just had a new custom VSA Radius with the utility CSUtil.exeFist i create the file myvsa.ini, this is for a SONET optical Nortel equipement, here it is:[User Defined Vendor]Name=OM3000IETF Code=562VS...

Hi,I have an IBM server running AIX 5.2 and I have a Cisco Secure ACS solution whitch protect access to the Cisco equipements(router, PIX and Switches ).Today I want to protect access to the IBM Server.Is is possible?and how can I do this? Thanks in ...

I have several Catalyst 3750 switches that I'm running Tacacs on. I set the switch up to be an http server so that some of our admins could administer the switches through the web gui. Is it possible to login to the web console via your Tacacs login ...

I have AAA running on my router and I can authenticate/authorize using the ACS server. I wanted test my config so I turned off the ACS server and tried logging in using the local username and password, I authenticate fine but then I get %Authenticati...

How to map this command from IOS to FWSM ?I want user when login and authenticated, it right way go direct to exec mode. No problem at IOS but , not sure how to configure it on FWSM or PIX Firewall.aaa authentication enable default enable noneaaa aut...

Hi,When I create user call peapuser in ACS, I have the option to use password authentication under windows database or cisco secure database.Let say if I choose to use windows database, does it mean I can use password aging and allow user to change p...