Network Access Control

Hello,I mus use Network Access Restrictions with Easy ACS 2.4 for PPP dial-up users, and I have not found any information about how to use it or the syntax.I want to use it for restricting the access for some users just for some routers and access se...

Hi,I am attempting to configure the above components in order that the Cisco's Routing table is updated with the appropriate static route once the remote router is authenticated using the Cisco ACS v3 RADIUS server.The connection seems to authenticat...

we used to use 2.3 to authenticate our dial-up users, sometimes we found some user couldn't log on just because their infos were lost without reason. we don't know why, so we added the user again, then we wil see two entries about this user, one is j...

Hi, I wanted to use ACS Server for Authenticating my Application Server Users. my Application server does not understand AAA,TACACS,RADIUS etc. I wanted to make my Application Server "Single Sign-on".Lester

I am having problems getting my Catalyst router modules (MSFC) to authenticate to my ACS server.If I do a debug on the MSFC I get the following:TAC+: send AUTHEN/START packet ver=192 id=429230155Apr 30 09:58:55.742: TAC+: Using default tacacs server-...

Currently I have a "freeware" version of ACS for UNIX. I would like to motivate the purchase of a licensed version. If any one knows where I could find a "comparative matrix" or a document that compare the two. I would greatly appreciate it. I have c...

I have several routers and switches. Authentication and exchange of keys were working without problems until yesterday evening. Nothing has changed, because only I have access to all devices and the ACS 2.3(x) machine.I have AAA in use, tacacs and ra...

I want to be able to define user and group based downloadable ACL's for access out to the Internet through a PIX 525 running PIX OS 6.2. There are about 700 users. Does anybody see any issues with this scenario?Also, how long does the downloaded AC...

Hello,I wanted to know is there way to authenticate VPN users without the ACS,such as on a PIX box or with the help of microsoft server.Thanks,Radhika

I have question about the flow of authentication for outbound and inbound users. This relates to how access rules and AAA work together.If I need to allow all users inside to access pop3 on the outside, do I need to create an access rule that follow...

Hello, I configured Tacacs+ as the authentication method for accessing my Catalysts 3524 with Telnet. This works well, with CiscoSecure V2.4 as the Tacacs server. My Cat3524 are running version 12.0(5.4)WC(1). I now try to use Tacacs+ as authenticati...

I am trying to authenticate a Windows XP client when physically connecting to a 2948G Switch.I've configured all parts to work toguether. But when the switch tries to authenticate the user (MD5 or TLS) always appears a log entry in the ACS failed au...

Hi all,I have managed to install and configure ACS 2.3.6 in a Solaris.I am able to telnet in many diff routers such as 7004VXR, 3600, Catalyst Switces and so on. I am also able to telnet in both of our three GSRs. My problem is tha in the last GSR wh...

I was looking to use Apache 1.3.24 as my backend for this task as I don't trust M$'s IIS enough to install it for a security server. I tested an install last night and got some of the pages to load for the change password interface. I was just wond...

Dear All,How do we authenticate a citrix ica traffic (port 1494) across the pix (from outside to inside using a public ip address). I have cisco acs authenticating the http/ftp but i dont know how to authenticate based on a port 1494 access ?when a u...