Network Access Control

Strange problem with ACS usernames

We have CiscoSecure ACS 3.2.We have now developed a strange problem with certain usernames. They appear as normal usernames in the list, but don't authenticate. If you click on them instead of showing the existing user's properties, it appears as i...

authentication/authorization with aaa server and local username

Hi:I want to use authentication and authorization with an aaa server, It ís working ok but I have a doubt.Can I use at the same time authentication and authorization with local username as a backup ? I think in case of my aaa server failure.Thank you...

Resolved! Can I disable some commands to privilege level 2 users?

Hello,I am trying to configure some users with different privileges on a 7505 router.I'm using the aaa method local on the 7505.I'm not using a RADIUS or TACACS server.I did create some users with privilege level 15 and some with privilege level 2 bu...

ACS 3.2 appliance, cannot import accountActions.csv

hello, i am trying to import .CSV file but i have still the same message from ACS'No import CSV file on FTP Server - nothing to process'hereafter the csv file example:SequenceID;Priority;UserName;GroupName;Action;ValueName;Value1;Value2;Value3;DateTi...

ACS 2.6 and 3.1 and ODBC logging in MySQL DB

Hi,we have the following problem if we log our radius or tacacs accountingto mysql-db via odbc.our user have username like domain\name.if i get an accounting record e.g. dom1\georg, everything is o.k.but if i get an accounting record e.g. dom1\bunny,...

ACS ver 2.6.1 database & win 2003 database.

Hi,Iam not able to synchronize between the ACS (version 2.6.1) database and windows (2003) database.Are they both compatible to each other.RegardsM

ACS 2.3 Changing Log file location

Hi,Is it possilbe to change the log file location for ACS 2.3RegardsM

AAA error

hi,,,when i call from ISDN TA to Access Server(Dialup from PC) the connection failed and give me this error when debug ppp authentication "LCP: Received AAA AUTHOR Response CANCELLED"i need ur help!Many ThanksAbd Alaqader H.HNetworks Admin.

TACACS+ received corrupt data from server

Hi,I've 2 ACS 1111 (A and B) with Release 3.2 on 2 different subnets...On the switches I've configured both the tacacs-server to use with AAA model...but I'm registering something REALLY STRANGE...If I use ACS B as Master and A as Backup on the confi...

Resolved! AAA ? locks out console

I'm playing with lock and key on a 3750 IOS 12.1(19)EA1. The console works fine (and there is no AAA or ACLs on the switch) until I add the following commands:!aaa new-modelaaa authentication login TestLK group tacacs+ localaaa authorization exec def...

NAR need Caller-ID /source IP address field to apply ?

Hello, I have one group profile that want to access a list of devices : access server, VPN firewall, routers, switches, another oem devices (like PacketShaper device that is using a Radius propietary version). I configured the NAR with many devices ...

ACS 3.x and XP SP2

Upgraded a PC to XP Service Pack 2 last week. Only app I've found a problem with is accessing ACS admin via http (port 2002). Above the user ID I get the message "Login Successfull...Please Wait" but nothing beyond that. Don't get past the login sc...

Cisco ACS and Windows 2003 compliance

This is regarding the migration from Windows 2000 to 2003.The migration step would include to Extend the Directory & Exchange Schema to 2003.The OS would remain win 2000.ACS version is 3.2.3 Build 11.Is this supported ?

Upgrade to ACS 3.3

Hello,I am new to Cisco ACS. The project is to upgrade our current ACS server 2.6 to ACS 3.3. I know that 2.6 cannot be upgraded to 3.3 directly.My question is: How can I keep the current user database for ACS 3.3 use, so i don't need to configure al...

Resolved! logging of usernames and ip addresses in routers

HI,Without AAA services, using "deny any log" unde access-class, I can log failed attempts IP addresses trying to telnet to the router.Can I also log down the username of the successful username without using a TACACS+ or RADIUS server?Can I just use...

Network Access Control

Forum Posts

Strange problem with ACS usernames

authentication/authorization with aaa server and local username

Resolved! Can I disable some commands to privilege level 2 users?

ACS 3.2 appliance, cannot import accountActions.csv

ACS 2.6 and 3.1 and ODBC logging in MySQL DB

ACS ver 2.6.1 database & win 2003 database.

ACS 2.3 Changing Log file location

AAA error

TACACS+ received corrupt data from server

Resolved! AAA ? locks out console

NAR need Caller-ID /source IP address field to apply ?

ACS 3.x and XP SP2

Cisco ACS and Windows 2003 compliance

Upgrade to ACS 3.3

Resolved! logging of usernames and ip addresses in routers

I have a question regarding the deployment of the ISE-PIC agent. Is it

Necesito configurar un portal de invitados "hibrido" en ISE 2.7

ISE Accept certificates without validating purpose will break 802.1AR

Cisco ISE JSON SMS

Occasional delay in assigning ISE SGTs to client traffic on NAD

CSCwq14246 - ISE internal disk check - ISE VM read/write issues

Cisco Catalyst 1300 and Dynamic VLAN

ciaco ISE 2.7 to 3.1 but it's using internal CA for authentication

Domain-joined computer and MAB

Cisco ISE - Is it possible to send AD Group in RADIUS access accept?