Network Access Control

Hi all,Need some advice. We have 2 sets of AAA servers, providing authentication etc for two different servers. We need to know if we can change the wording of the "username" prompt on the AAA server running on Windows NT. We know how to do it in Uni...

I just installed a 3000 concentrator, ACS and RSA Securid. The concentrator points to ACS as an authentication server. RSA is configured as an external database to ACS, User is defined on ACS with the thier password authentication set to "RSA Secu...

we have a vpn 3015 that then authenticates to a cisco secure acs server. i have just added these 2 servers in the accounting server section of the group but i am unsure how i am then able to configure the logging of stop - start of users etc or is th...

I must be missing something here. I would like to have my routers use tacacs+ for authentication, and if all tacacs+ servers are unreachable have the admin able to get in with the enable password. I have the following aaa setup:aaa new-modelaaa aut...

Has anyone been able to get RADIUS authentication to work for VPN users with the PIX OS 6.3(3)? The authentication appears to be accepted on the IAS server, but the client gets the error "Reason 412: The remote peer is no longer responding."Anyone o...

Hello,We have ACS 2.3(3) for Unix on a Solaris 2.5.1 and sometimes the user is unable to authenticate on his dialup access. We need to delete and recreate the user, and then the authentication works : do you know the reason ?Thanks by advance,Patrice

i had read AR snmp config doc, but some content i can't understand.the doc said:step2#sec.name source communitycom2sec local localhost privatecom2sec mynetwork 10.1.9.0/24 publicwhen is modify this file to fit my network,the word com2sec need to chan...

we have a vpn 3015 that then authenticates to a cisco secure acs server. i have just added these 2 servers in the accounting server section of the group but i am unsure how i am then able to configure the logging of stop - start of users etc or is th...

My scenario is:- Cisco APs (350 & 1200 Series)- ACS 3.2 appliance- Active Directory- User authenticate for wireless connection using Cisco PEAPNow the wireless users have user accounts in the ACS 3.2 mapped to the external data base AD to get connect...

Hello,I've a customer that needs to upgrade their existing ACS to 3.2. This is a high-volume production environment, providing TACACS+, LEAP & MAC address authentication for WLAN, and dial-up VPN authentication with a redundant offsite ACS pulling i...

i have 2x ACS3.1 servers, and can get the first to proxy off a request to the second ACS [proxy distribution table]. This works 100% if the user has a local ACS db password on the 2nd ACS, but fails if 2nd ACS passes the authentication request on to...

We have a large number of VPN connections using the Cisco VPN client (V4) and XAUTH, I'd like to bypass the XAUTH stage for a single VPN connection/group. The remote peer will have a fixed IP address.Any suggestions?

HiI wonder if you guys can help with something I'm trying out. We are using CiscoSecure 3.2. At the moment all users with ACS accounts have full access to the routers/switches once they have authenticated. But we have a group of users who could do ...

I have the following setup.user 1 ---- Firewall ------- Firewall 2 ----- serverFirewall 1 uses PAT. I need to authenticate on firewall 2 every time a user connects. However the PIX only authenticate on the first attempt all other connection go stra...