Network Access Control

Hi,When the vpn users are authenticated with NT accounts, they will be put into the default group by default.Is there a way to change the default behavior?Thanks,Wei

I am in the process of planning the implementation of Cisco ACS for purposes of authenticating remote users to two different Windows 2000 Active Directory domains. Both domains are on my inside network and are child domains in the same forest. All ...

I would like to ask some ideas on ACS configuration for device management using TACACS+.Can I possibly add single AAA server to several Network Device Group? I tried to input AAA server to NDG A and the same AAA server to NDG B but it displayed overl...

hi,I'm implementing Authentication with a tacacs server, all is working fine but I have a very specific question :My conf iguation :aaa new-modelaaa authentication password-prompt Password:aaa authentication login securid group tacacs+ localaaa authe...

Can I use ACS2.6 for PIX 6.2.2 command authorization. I used "Cisco - Authentication and Command Authorization for PIX 6.2" as my reference. The doc talks about needing a patch for ACS3.0. Is there a need for a similar patch in ACS2.6Thanks

I would to be able to have an audit trail for all changes to our firewall. I have setup the PIX to use aaa for authentication. Commands associated with the user ID are sent to the syslog server until I provide the enable password. Afterwards, all ...

In TACACS version 2.6 I configured event logging to send an e-mailwhen an event occured. When the system performed a scheduled backup I would get two messages. One indicating the service was halted, and one indicating the service was re-started. ...

When configuring the ACS server for the FlexWAN as a TACACS+ client, which interface on the FlexWAN will source the request to the ACS server? The "Tacacs-Server Source Interface" command is not available, V12.1(13)E. Also, in a FlexWan configured...

--begin ciscomoderator note-- The following post has been edited to remove potentially confidential information. Please refrain from posting confidential information on the site to reduce security risks to your network. -- end ciscomoderator note -- ...

We are setting up a ACS server. We are testing with a Cisco router. We want the router to pass off the authentication to the ACS server, however the router prompts for both userID and password. Although you only need to hit enter to the password, we ...

I am trying to use the "aaa authentication ppp default group xxxx none" so that users are authenticated to the radius server, but if the server is down then it will authenticate everyone at the router(the "none" command). This works on my as5200 and ...

hi engineers ,i have got a problem during initializing access restriction in ACS v2.6 , when i'm gonna restrict a specific command in TACACS+ setting menu ,ACS doesn't accept the IOS command and send an error;-----------------------------------------...