Network Access Control

I am new to aaa and was starting to configure it on my router. I did wri mem and left for the day. When I try to telent or console to my router today it is asking for username/password and of course authetication is failing. How can I get into thi...

Hi,I have ACS 3.0.1 build 40 running on Windows 2000 server. Now I have security patch to be applied to this, which can only be applied to 3.0.3 version. Is there any way I can download 3.0.3 from the web? ThanksSrikanth

Hi,I see we can import the user database using CSutil. Moreover we can create up to " fields in the user account (+ Real Name and Description).Is it possible to importe this field in the databse?for example if we havea user:user=John, password=12345,...

Can someone help me with the cisco attrib dict file for RAMPLS and how to configure pls dont give links from the cisco site its pretty useless

I have a group mapping in ACS to a Windows 2000 Active Directory Group. If I add the NT users individually to the NT group they are able to authenticate with LEAP just fine. If I add the same users to an NT group and add that NT group to the ACS mapp...

We have been recieving a number of errors 'CSTacacs: Failed to authenticate on test account' on a new dual server installation of ACS 3.1. The error occurs around once an hour.We only use the RADIUS service, we don't use TACACS.Any ideas?

I am having problems configuring my routers for AAA access to my ACS 3.1 Server. Switches have been working fine, but I am missing something. When I set the: aaa new-modeltacacs-server host *.*.*.*tacacs-server key BLAH_BLAHtacacs-server timeout 60I...

Is it possible to reference object-groups within downloadable acl's?

Hi all,I am trying to set up a radius-based l2tp. I am using freeradius. What is the best way to implement this. I have read a bit of the documentation on the cisco website, some are using Tunnel-Type, Tunnel-Medium etc. While some are using "cisco-a...

I'm trying to configure 802.1x MD5-challenge authentication with my catalyst 2950 switch. The radius server is a cisco secure ACS which uses Windows 2000 domain user database.When I try to authenticate, ACS give me this error : "CS CHAP password inva...

All,I'm trying to get callback via ACS to work on my 3620. The call negotiates, initiates call-back (or so it looks like from the logs) and then just sits there. The client never actually receives the callback from the router. I've got an analog c...

I'm trying to create routes for the user in user av-pairs, but I am also trying to limit access (Acl) to certain locations by what group they are in.But it seems that they don't join them together and only take the user av-pair and ingore the group s...

I am trying to define AV ( attribure -value) pairs in ACS/WINdows to work withvirtual profiles defined to assign dial profiles in a CIsco 3662 routeworks works as dial aggregate.But, in the CSACS documantation, it is very difficult to find out these ...

I am finding when the TACACS server is unavailable that when telnetting to the Catalyst (CATOS) switch I am being prompted for the username even after it tells you that the server is unavailable.The TACACS configuration is;set authentication login ta...

I am working with PIX 6.2(2) and ACS 3.1 attempting to configure downloadable acl's. My PIX configuration doesn't require any other authentication or authorization, therefore, I don't have an acl created on the PIX that binds with a AAA group using ...