Network Access Control

hi,when an ios box comunicates with a radius server it send several fields of information. some of them when you see the actual information look like this:Mon Feb 23 18:01:11 CST 2004 NAS-IP-Address = 10.230.1.2 NAS-Port = 2 <unknown attribute> 26 (V...

Does anyone know if it is possible to enable AAA on the "least trusted interface" on the PIX. The environment was originally designed so that the inside interface is actually the least trusted interface. I need to enable AAA on the inside interface...

Please tell me if it is possible to authenticate local and remote users with the same AAA Server for the network having approx 1000 users. ? thank you again

Hi,I am configuring the prepaid service on the CAR but i need a Filename (Library provided by the billing vendor). Does aybody know the structure of this library? I know it has to be a C program compiled with gcc 2.95.3The port you configure is TCP o...

I cannot connect to my SQL Server using Windows Authentication over VPN using VPN client and a PIX 515. Is this possible or what options do I have?Thanks.

Hihas anyone configured a 802.1x authentication with a Radius Server in a csacs 3.1. Im tryng to authenticate with a Windows User database.Any Document? or guidelines??

I am having trouble finding documentation that tells me if I need a separate license to install another Cisco Secure ACS server to act as a redundant server to our existing box?

I'm looking for a way to transparently authenticate NT/2000/XP users to Active Dir. or Domain Controller (via LDAP). I heard you can setup a cisco switch to authenticate this way; a user hits Ctrl-Alt-Del, enters NT login info, the switch sees this l...

Has anyone out there enable Cisco Port Authentication successfully? What kind of problems have you run in to with it?

Hi. I'm trying to get Cisco's free UNIX based TACACS+ to work with the /etc/shadow file in Linux. If I manually paste the DES encrypted password from the /etc/shadow file into the /etc/tac.conf file (using the line "login = des <encrypted_passwd>"), ...

HiI've installed a PIX 515E DMZ with PIX OS 6.3 at a customer's site. I've enabled RADIUS authentication for access via the internal interface to the outside interface (Internet), this is done via Microsoft Active directory and IAS (Microsoft's own R...

We are transitioning from a failing Windows ACS enviroment to two hardened ACS systems. We were seeing this in our Windows/Windows ACS enviroment and now in our Cisco/Windows ACS enviroment. Even though our timeout to next AAA server is set to "tim...

Hi,CAR can be integrated to talk to external auth. server like Microsoft Active Directory (AD). Can we specify more than 2 AD servers in the list for backup purposes?Thanks.Regards,AK

Hi,To secure access via WLAN infra, LEAP is another option that can be used together with 802.1x. Can LEAP be used with RADIUS (Cisco Access Registar@CAR), where RADIUS, in turn will forward AAA request to another external server via LDAP? I've came ...