Network Access Control

Has any one used the RADIUS server that comes with Windows 2000 Server? I have a small network 15+ switches, and a router. I want to increase security a little and have user name and password, but I can't justify the money for the Cisco server. I’...

Dear all,I would like to access into the enable mode with two different way.The first one is by using radius authentication with a telnet connectionThe second one is by using the local enable password for a console accessWith CatOs we can easily do t...

In the past i have heared there exists many problems with the cisco secure acs software and service pack 4 from microsoft. We want update the acs to version 3.2? Is the acs 3.2 SP4 ready???Thanks Maik

Has anyone configured AAA on a FWSM V1.1.3 I am testing with no radius server available The command I am using is aaa authentication supervisor console tradius [LOCAL] However the local element does not appear in the config and no access is available...

I have the ACS server user manual, the CCSP study guide(SECUR), Netowrk seurity architectures, and managaing Cisco networking security. I can't seem to find a SINGLE good reference on the subject of setting up an enterprise AAA infrastructure. Other ...

Hello,I'm new to authorization on Cisco ACS server.I'm wrestling a couple of days on getting the authorization working.What I would like to archive is limit the commands executed on our Cisco material. I would like to have an "any" for us, and a lim...

Has anyone been able to get 'aaa authorization commands 15 default group radius local' working with RSA's RADIUS functionality in ACE5.1?Here is our config:aaa authentication login default local-caseaaa authentication enable default enableaaa authent...

I had currently turn on TACACS authentication for all traffic going to internet.Is there anyway for me to bypass a specific destination and port from TACACS authentication? The rest of the traffic must still challenge by the ACS server.

I had currently turn on TACACS authentication for all traffic going to internet.Is there anyway for me to bypass a specific destination and port from TACACS authentication? The rest of the traffic must still challenge by the ACS server.

I have the following config:aaa authentication login default group tacacs+ localaaa authentication enable default group tacacs+ enableaaa authorization exec default group tacacs+ if-authenticatedaaa authorization commands 1 default group tacacs+ if-a...

Any tips on importing multiple devices (not users) into ACS 3.2 database?

I am using CISCO 2509 NAS. I want all the accounting attributes to be send to ACS(RADIUS server). How can I configure NAS to add all the accounting attributes besides default attributes that it sends.Thanks, Nishant

We have Radius (Funk Software) server running under Windows 2000 and VPN 3000 Concentrator Series. We would like to setup the Radius attributes in Radius. Do you know where I can find the sample of the RADIUS attributes for VPN authentication? I d...

We currently have a number of routers using Cisco ACS for AAA. We have recently set up Naetwork access restrictions on some accounts. This lets particular accounts access only a number of devices and only a restriced set of commands on the devices. T...

Hello all,I've configured 802.1x port-based authentication using a Catalyst 4506, MS IAS (RADIUS), and a Windows 2000 SP4 Client. Everything seems to be working execpt VLAN assignment.I've made sure to issue the command:aaa authorization network defa...