Network Access Control

We are using ACS 2.6 to track incoming and outgoing calls from two AS5300's each using a different carrier. In the CSV the callerid field is being populated, but with one carrier it shows up with the calling from number/calling to number and on from...

Hi all, I have remote users connecting to the 3005 via ipsec. Here is what I would like to do. Client comes in and authenticates via cisco acs raduis, the raduis then points to rsa secure id token which has a hook into novell nds for user database au...

OK, I know this is probably one of the easiest question you guys might have come across, but the question is what command can I use so when I telnet to my router it asks me for username. banner motd # only asks for password.

Hi,My problem is the following:I configured our PIX to authenticate on a radius our Network administrator when they try to telnet it. Afterwards I configure the enable password in our local database. Hence each can access to the user mode but few of ...

I am preparing to upgrade from ACS 3.1 to 3.2, but I have found a potential problem highlighted in the 3.2 release notes, could anyone advise please.The hardware used is a dual Pentium processor, with 512K of RAM. The OS is Windows 2000 Advanced Ser...

I need to check what version of VPN client the users are using. I'm looking at CVS RADIUS Accounting but can't find the attribute for the version the clients are running. Am I looking in the right place ?How can I check the VPN client versions ?

HiI have a problem with an user. This is the message :User "ici" requires IP Filters to WorkAs ici's Group Forces this policy, and provides no defaultUser ici can not be authenticated until this is rectified Thanks for your help

This seems like it should be easy but I cannot find a sample config. I have dynamic crypto maps set up for remote client VPN access on a PIX. This is working fine and users can intiate sessions by using the groupname/password. I want to configure ...

A customer would like to install the 2 SW, CWVMS and CSACS on a DMZ.We have a PIX-515-R with only one DMZ and only one PC to install on it CSACS and CWVMS to manage the PIX and one IDS4215.I know that it's not the best way to handle that (separate DM...

Hello,I am configuring a 3005 VPN concentrator with v4 client to authenticate to MS Active Directory. This works fine but anyone with a valid account in AD can authenticate. I would like to restrict VPN access to a group of users. Do I need to go d...

Has anyone installed ACS on 2003 server, and if so did you have any problems. thanks

Hello,I would like to find out how AAA does its encryption (or at least what it uses). I saw another conversation where it was mentioned that the username & password from the workstation to the switch is in clear text, and only the passwords from the...

Some users are running an older version of the VPN client 3.6.2. Trying to get everyone on version 4.0.2 D. Is it possible to lockout users using the older version.On the ACS 3.1 server can I setup RADIUS accounting to see what version users have on ...

Hi!I tried to set up 802.1X authentication for W2k (with Q313664_W2K_SP4_X86_EN.exe applied) and 3550 EMI with CS ACS 3.1, but it doesn't work (both EAP-MD5 and PEAP). The PEAP-user 'test2' is in the Win2K database on the same machine as RADIUS serve...