Network Access Control

How does one install Win2000 patches on a ACS appliance? We just got one in and before we make it live on the network we have to have all the W2K security patches installed. And later on when Microsoft comes out with new patches we'll need to insta...

I have client with ACS authenticating remote users against an LDAP. They want to have wireless users using aironet authenticate against the same directory. I can find mention of PEAP against LDAP but no configuration instructions. If I can't do it wi...

hi all:we have windows based ACS runing and now we are migrating ACS to solaris based. how can i migrate the user database from windows to solaris? we don't use external database, only use the SQLanywhere database.thnaks

I am looking for some good information regarding the setup and implementation of the Cisco 1111 appliance. i.e. what do I do with the second NIC, how do I use 2 appliances to ensure reliability and redundancy....... I looked under documention on Ci...

hi,I am using aaa for tacacs+ authentication on my routers but my tacacs+ server is taking usernames from LDAP. If LDAP goes down my authentication is failing. So I need a backup configuration for line vty 4 like"aaa authentication login test line""l...

We have Cisco Secure ACS v3.2 installed three months ago. Last week we faced a serious problem with the appliance. It suddenly becomes unreachable, and it needs manual reboot to bring it up again. Once we checked Diagnostic Logs in the System Configu...

I thought I had this set up right but when the routers couldn't reach the Tacacs servers, I wasn't unable to to get on console access.Basically, I want to use Tacacs when it's available. If not, then I want to use the local database to get console an...

I am a web developer , not a network engineer so be nice...I have been told we have a "Cisco Secure ACS 3.2 for Windows Server" and that i need to query that serverto log people into our extranet. The server contains the passwords for our VPN concent...

Is the ACS software not capable of using nested groups? i.e. Define a user in GroupB in one domain, nest that group in GroupA in another domain. Created the mapping in the ACS to GroupA. Can it only locate a user/group combination within the same ...

Easy Q: IOS devices allow you to specify a key for each tacacs server instance, but CatOS devices can support two tacacs servers (1 pri and 1 sec) and only a single tacacs key. Is this correct? Thanks - Rich

Hi,My problem is that the usage of cisco-pix attribute ip:route=dest mask gwthe static route specified in the above command is not applied to VPN clients, connectied to the VPN server. The same av-pair works fine with access-lists which are assigned ...

Can anybody confirm whether the accounting for VPN client sessions has been implemented on the PIX or not.gfullage stated on Jan '03 it was on the roadmap, but I haven't heard anything on it since then.VPN client accounting on the PIX is a very sough...

I am using a PIX515E (6.3(3)) and ACS3.1 to authenticate access to a private network using RADIUS and downloadable ACL's. I would like to log when a user was authenticated and how long the user was accessing the private network. In ACS Reports I can ...

I've just upgraded to v3.2 from 2.6.2 on my ACS. Since then failed, passed, accounting and administration logging will sometimes appear and sometimes not. All logging has been enabled. If I look at previous days sometimes the information will appe...

Hello,I have to import from ACS 3.0 to ACS 3.2 Appliance only a group of users. I see that in the ACS 3.0 there is a CSUtil.exe to export the users, but it'isnt possible to use this utility in the appliance. Can some one know as can I replicate only ...