Network Access Control

I set up two new Cisco ACS servers on Win2k and followed directions on setting up database replication. However, when I try to replicate the databases I get the following error message in the log:ACS has denied replication request. I could not find...

Hello,I would greatly appreciate if somebody could confirm two things:1. Whether PIX supports assigning IP addreesses to VPN clients from IP POOLs defined on Cisco Secure ACS 3.1 server?2. If I define several IP LOCAL POOLs on the PIX and assign them...

Hello,I'm in the process of setting up our Pix 515E (ver 6.1(4)) to act as a VPN endpoint for remote users (mainly Windows OS clients). I wanted to eliminate the need to download the Cisco VPN client software (using Windows built-in VPN capabilities...

Here is my current configuration and the authentication works fine.aaa-server Auth protocol tacacs+aaa-server Auth (inside) host XXX.XXX.XXX.XXX Password timeout 5aaa authentication ssh console Authaaa authentication ssh telnet AuthNow I want to appl...

I'm using ACS 3.1 to authenticate VPN and Dial-up users, the dial-up users are currently set up on an old 3Com RADIUS server. During testing I'd like to leave the Dial-up users on the 3Com server and have ACS forward the authentication requests.I'd ...

Hi all,I have 3660 router and some dialin user with Radius server under NT 2000 (Internet Authentication Service).User is authenticated by the Radius server (I see the Radius log and Event log at NT), but Cisco router returns : "Apr 29 10:10:33 10.10...

I'am trying to Implement "Port Based Network Access Control" with PEAP in SWITCHING Environment: W2000/XP Client (PEAP & Cert & HW token)Catalyst 2950-12 w/setup for 802.1x, or Hp Prcurve 5304xl w/ setup fot 802.1xACS 3.1 (with Server-Certificate & R...

We use CiscoSecure ACS 2.(3).2 on SUN.I want to write a script enabling administrators to reenable accounts and change passwords from the command line.Can this be done ?

cannot use CHAP,MSCHAP for the authentication on windows2000connect to Radius through PIX 515Ewhen i check PAP option out ,the client cannot connect to the internal networkit always try to authenticate by using PAP

Hi,I have this situation: I'm controlling all router's administrative access with AAA radius authentication. This AAA server is Microsoft IAS radius. The users accounts are then the same of the Operating system. I'd like to understand how I change...

Hi,I have installed ACS 3.1 on Windows 2000 member server and I have completed all steps necessary ( at least as documentation says) to integrate it with Active Directory. When I try to login with a user that is not defined locally on ACS instead of ...

I am trying to configure a PIX through PDM 3.0(0)148. I want to configure tacacs+ authentication and if the server is not found, let the users enter with the "enable" password.Does anyone know how to do it or something similar?TIA

Is there a way to have a single login when using Win2k or XP clients connecting to a 3550 switch set up with 802.1x port authentication to a ACS server version 3.1? I have been beating myself up trying to get to a single login that when the person p...

I had both ACS 3.0 and VRM installed in the same NT 4.0 Machine.ACS ports had been changed in registry asAuthentication: 1812Accounting:1813VRM ports uses standard IETFAuthentication: 1645Accounting:1646All user token authentication works fine and AC...