Network Access Control

Hi.Is it possible to configure restrictive rules by user or group to control accesses by destination IP.Ex. User/Group A: Access to Server A port 80 User/Group B: Access to server B port 80 User/Group C: Access to both serversWithout Downlo...

Hi,I have a situation where I need to authenticate inside http users before going on the Internet. Easy enough with the PIX or the “Authentication proxy feature” on the IOS Firewall combined with a Tacacs server.Problem is : All users appear as the ...

Hi,I have a situation where I need to authenticate inside http users before going on the Internet. Easy enough with the PIX or the “Authentication proxy feature” on the IOS Firewall combined with a Tacacs server.Problem is : All users appear as the ...

Hello,I've a couple of ACS 2.1 servers authenticating via a NT domain. I had the following problem: when a user not defined on NT domain tries to authenticate I see every 3 seconds an authentication attempt on "Failed attempts log" instead of only on...

Hii have two servers A and B. A is the primary and B the backup. i can replicate the users and AAA clients but i can't replicate the ip pools defined on the server A. How can i do that? On the log and report messages the output is: replication comple...

I am using a cisco 2620 for voip,right now I am using Tacacs+ for the accounting,and this the conf that I have in my router : !aaa new-model!!aaa accounting connection h323 stop-only group tacacs+aaa session-id commonenable secret 5 $1$YUAt$wv16aL8Q...

Is the timeout value of the downloadable ACL defined by the uauth timeout value?

Hi,after the re-installation of ACS 3.0(1) Build 40 on a Window NT 4.0 Server with service pack 6a, the CSRadius service does not start. All the other ACS services work fine.ACS 3.0 was previously installed on the server, but something went wrong aft...

How to obtain an evaluation version of CS ACS v3.1 ?Thanks,Engel

hi,can one, from a desktop, create a pptp connection destined to a cisco 3100 router, have that authenticated and authorized using the cisco router as a aaa client (radius) to allow the client access to a certain network?

i configuring 'aaa authentication login' and 'aaa authentication enable' ,as well as 'aaa accounting exec' and 'aaa accounting command' ,but there are not any record about 'aaa accounting command' , only the records of 'aaa accounting exec' appea...

Is it possible (and if yes how) to configure the ACS windows ver 3.1 to force the user to change their enable password. Users are required to use different password when going into enable mode. They can currently change the original password.

We currently have a CSACS NT/2000 3.0. We are currently utilizing this to AAA all Cisco infrastructure gear.My question is: Is it possible to utilize the CSACS to AAA Unix infrastructure systems?My assumption is, if Unix utilizes the RADIUS standar...