Network Access Control

I am trying to set up login authentication on my Cisco routers to use SecurID tokens. When I try to login into the router it uses the line password in the authentication list I specified instead of using the TACACS+/SecurId method specified in the li...

Can ACS 3.1 support s/key authentication or use an external s/key server for passing authentication?

Hi allMy customer uses PIX OS 6.2.2 and i made Remote to Site VPN configuration They use latest VPN client sofware for Dial-up users.They use Cryptocard Token and i configured for http authentication with use oftoken.There is no problem regarding th...

On the accounting page of my aaa server logs i notice that i keep getting "nas resets" . I understand that i can eliminate these by not using the single-connection option on the tacacs-server host command - even though cisco recommend using this opti...

I am having a problem with a bulk import into ACS 3.1.I Import the following using the csutil -i.OFFLINEADD:000124-80337e:PROFILE:1:CHAP:password:CSDB:passwordWhat we are trying to do is, have a group of Avaya access point authenticate all wireless u...

Folks, what would i have to do to configure my ACS server so that i can find out users which are connected or logged in at a present time. I am using ACS for authenticating VPN users on my pix firewall, i would like to know who is conn...

Dear all,I have already configured a 3660 router for users to dialin.I use for aaa the microsoft radius (NT4) that is currently installed on the Primary domain controler (PDC).The authentication is working properly for users of the domain that trying...

Can we have both TACACS+ and RADIUS on the same server? Please help

ACS 3.0 for windows will not authenicate ap350 or ap1200. External database is windows 2000 active directory. Raduis server will not communicate with AP350 or 1200 using Leap. Do anyone know the correct configurations needed to successfully authe...

Hi,I'm trying to use CAR to assign IP to the user. But it doesn't work. So I add a second Resource Manager to limit the user session in the same Session Manager, this one works but the first Resource Manager which should assign IP to the user still n...

Hello,I have seen the following configuration used, but don't see the point of the enable method at the end, since it will never progress beyond the line password. I have tested this by having the TACACS server down, and removing the line password, ...

Hello, does anybody know if are there plans to support external authentication through Kerberos in Cisco Secure ACS (windows version) ?Thanks a lot for your response.Regards, Anacelia

I want to be able to restrict users to certain commands on my Access Layer switches. I can do all but the "set vlan" command set. I need to be able to allow these users to 'set vlan <vlan number> <mod/slot>" but not do any other set vlan commands. Fo...

Using ACS 3.1. Want to have routers belonging a specific network device group. For example, I created 3 network device groups: core, distribution and access. I assigned my routers in those 3 different groups. I created three user groups: core-ad...

I have a AAA, Radius. I see where I can do some voip accounting. I have a test router that I have tried to set this up on. I am not having any luck. Has anyone set this up? If so, can you provide a document that would help or any sugguestions?I ...