Network Access Control

We are setting up Cisco Secure 3.1 to manage access and command authorization for network devices (i.e. routers/switches).Our network support engineers telenet into routers on the network . When we use Cisco Secure, if an unauthorized person attempt...

Hi there, I got a Cisco 3661 router, a ACS server and a ACE server installed in different boxes. An ACE client has been installed in the same box as ACS server. There is an AAA authentication configured on the Cisco 3661 router with TACACS+ authe...

I'm trying to setup users so that when they access the internet they have to authenticate using Cisco ACS 3.1 using a Windows 2000 domain for ID's & passwords.When testing the WIndows 2000 ID I'm using the account gets locked out. Followed the instru...

Other than looking at the date and timestamp on the directory that CSACS for Windows Eval was installed in, is there any way of determining when the eval license expires? I've had a look on cisco.com, google etc. and in the server's registry but I ha...

Would like to upgrade from ACS version 2.3 to ACS version 3.1. The upgrade path suggested is going to 2.4(3) to 2.6 to 3.1. Would it be possible for me to do a database replication to another server having version 2.3 and then try to upgrade just th...

I am trying to set up login authentication on my Cisco routers to use SecurID tokens. When I try to login into the router it uses the line password in the authentication list I specified instead of using the TACACS+/SecurId method specified in the li...

Can ACS 3.1 support s/key authentication or use an external s/key server for passing authentication?

Hi allMy customer uses PIX OS 6.2.2 and i made Remote to Site VPN configuration They use latest VPN client sofware for Dial-up users.They use Cryptocard Token and i configured for http authentication with use oftoken.There is no problem regarding th...

On the accounting page of my aaa server logs i notice that i keep getting "nas resets" . I understand that i can eliminate these by not using the single-connection option on the tacacs-server host command - even though cisco recommend using this opti...

I am having a problem with a bulk import into ACS 3.1.I Import the following using the csutil -i.OFFLINEADD:000124-80337e:PROFILE:1:CHAP:password:CSDB:passwordWhat we are trying to do is, have a group of Avaya access point authenticate all wireless u...

Folks, what would i have to do to configure my ACS server so that i can find out users which are connected or logged in at a present time. I am using ACS for authenticating VPN users on my pix firewall, i would like to know who is conn...

Dear all,I have already configured a 3660 router for users to dialin.I use for aaa the microsoft radius (NT4) that is currently installed on the Primary domain controler (PDC).The authentication is working properly for users of the domain that trying...

Can we have both TACACS+ and RADIUS on the same server? Please help

ACS 3.0 for windows will not authenicate ap350 or ap1200. External database is windows 2000 active directory. Raduis server will not communicate with AP350 or 1200 using Leap. Do anyone know the correct configurations needed to successfully authe...

Hi,I'm trying to use CAR to assign IP to the user. But it doesn't work. So I add a second Resource Manager to limit the user session in the same Session Manager, this one works but the first Resource Manager which should assign IP to the user still n...