Network Access Control

I have a 6509 authenticating with a Tacacs+ server, but i want that the Switch authenticates with a local username and password in the case that the Switch cannot reach the Tacacs+ Server.Can this CatOs support this feature??

We are running an MPLS network. Our customers router (CE) that connects to the PE runs RIP. We are required by some of customers to implement authentication on RIP.Our concern is what is the impact to the network when we implement it:-For example, le...

Hi,I am trying to set up some routers & switches so that users authenticate with the radius server.However I am not able to input the radius-server command to specify the host and port etc.I have entered the following:aaa new-modelaaa authentication ...

Some one modified his workstation' MAC and rebooted his machine.Then he again modified his machine's MAC to original one after he intruded into my computer. My IDS recorded his ip and MAC. How to find which house the hacker's computer was? After the ...

I'm migrating users from a legacy firewall to a new security infrastructure using PIX 515E's.We provide Internet access to the public from certain locations and this is currently controlled using a proprietary "authentication client", a piece of soft...

Hello.The problem is that under Interface Configuration RADIUS (IETF) AV pairs Primary-DNS-Server (135), and Secondary-DNS-Server (136) didn't displayed. How to make it visible ?F.e. for TACACS+ I can add new service, but I don't see any way to do th...

I have pix 501 and configured for easy vpn, it is working fine. Now, I like to add some type of authenticate into my PIX. I preferred Windows NT AD authenticate. How do I configure Win NT AD authenticate if it is possible.

Hello, got some qns here after reading the ccnp switching guide... a command like this : switch(config-if)# dot1x port-control {force-authorized | force-unauthorized | auto} force-authorized : The port is forced to always authorize any connected clie...

Hello,at the ACS server in the user setup there is a fieldClient IP Address Assignment.There I can select a static ip addresss for a client.When I do so, does the ACS only check, if the client uses this IP address, and if not, the access is denied, a...

Dear membersIn the Dot1x window that pops up after, we get into XP, there is username, password and Domain.what for domain is there, anyone tried out this, for what purpose is this.anyone tried out dynamic IP assignment sucesfully.regardskalyan

I am using 3620 bundeled for one PRI.My access server wont send stop packet to RADIUS and user remain hanged in radius and he is not allowed to connect untill it is removed from radiusconfiguration isaaa new-modelaaa group server radius rkt server x....

I have 3 vlans, 802.1q trunking, a total of 10 switches. The topmost switch is a 2950. Can I set up 802.1x using multiple host configuration on each 2950 port and still control the access to VLANs throughout the network based on MAC address? The o...

What´s the max. recommended number of users in the Pix Local User Database if used for VPN XAUTH ?Are there differences between different hardware (501-535) ?

I am trying to get our CiscoWorks to manage a PIX 520 firewall running ver 6.3.3. It seems to get SNMP information but getting and managing the configs has been a problem. When I look in the PIX log I see this message: INFO %PIX-6-315011: SSH session...