Network Access Control

googled for information related to this. I found conversations along the lines of using IDS and whatnot.Isn't there someway to log/trap auth failures? Sniffing is great for telnet, but what about ssh?Tell me this has not been overlooked.

just downloaded tac_plus for unix.compiled it and want to start deamon on port 1049 rather then 49(default)Who can i do this??

Is it possible to configure a Catalyst 3550 so it authenticates the users against a Cisco Secure Server, before they gain acces to the network resources, ie before it logs on the network.Not to telnet to the switch.

Hi,I have upgraded my VPN concentrator 3015 to 4.1 ver. We have also enabled SSL VPN on the same. When I try to login to VPN it says "Login error", but when is mention the username as "username#<group name>" it is able to authenticate. I need to conf...

I'm trying to configure our ACS 3.x server to use Generic LDAP. I'm getting this error in the failed attempts report " External DB reports error condition"Can anyone offer help on how to troubleshoot from that error message? Is there a way to log w...

hi allplz try to understand the following1 cisco 3600 series router1 ethernet port to local lan i.e:3500 series switchi am trying to connect a L3 switch to one of the router eth ports whereas i have a machiene on the 3500 series switch mentioned earl...

Recently we purchased the Cisco ACS server 3.2.X Can we install the ACS server 3.2.X on a Windows 2003 server?

Hello all, Is it possible to use Catalyst 2950 switches as Agent hosts for RSA Securid tokens ?I have been asked to investigate Securid authentication for LAN users and I need a device which all pc's pass through to act as an agent host and redirect ...

We already have the Windows ACS engine configured & working. We want a backup but need to know if the Appliance can synchronize with the windows engine. This is mainly an attempt to ensure that a windows worm can't take down our whole ACS system.Than...

Is that possible for the VPN client to get same permanent IP address and specific ACL policy each time they access the network via VPN Tunnel and authenthicated by ACS server. In another word can ACS server push a particular IP and policy for each cl...

Hello all,I need to perform a per-user NAT translation and can't figure out if this can be accomplished with PIX and ACS :When an authenticated user gets access to my inside network, I need to perform NAT to assign each one an specified IP address, m...

I use Cisco ACS for Radius AAA to remote access users. The radius accounting logs have the columns Acct-Input-Octets, Acct-Output-Octets, Acct-Input-Packets, and Acct-Output-Packet. I found documentation explaining these fields but nothing on the val...

I am aware that the ACS on Windows has the CSUtil.exe utility to achieve bulk importing of aaa clients(ADD_NAS statements). But is there an equivalent tool/feature with the ACS Solution Engine to achieve this. I expect that most installations would h...