Network Access Control

Hi everyone,Is it possible to log every command issued on routers/switches to an AAA server such as CiscoSecure ACS?If yes, how?Cheers,Attila

I want to configure authentication in the PIX(6.1.1) but cannot get a prompt for authentication. please give me an advise what's wrong for the following scenario.Server-(1.1.1.0)-PIX-(2.2.2.0)-VPN3030--Internet--PIX515-(3.3.3.0)-Client1. IP for serve...

I want to enable our remote dial-up users to open a windows session on our NT domain witch is at the headquarter. I don't use windows ras server.The dial-up connections rely on the LETP Architecture of our Service Provider.up now , the provider manag...

I have PIX authentication for getting to Internet.When I open IE window and go to internet I get challenge and after I put username and password I can get to Internet.Authentication happens just one time.If I am not authenticated yet and I am readin...

we're moving away from an inbound authentication/authorisation scheme (which takes place within an unencrypted http session) to one that takes place at the https level, at the target website (within the encrypted https session).PIX Version 5.2(5) .....

I am keen to know whether I am able to use Watchword Encryption Tokens with the Cisco ACS server for Windows. If so how are they integrated into the software.Your help is appreciated.

I have a user getting this error when they try to connect to the VPN client 3.6.1. Other users are not getting this error?Any idea what this means?

Hi.I would like to see a log summary, in ACS Advanced Administrator there is an icon to display summary and password expired information. But when I push on this icon I receive this message:Server:Accounting request get failedThanks for your help

We have loaded a Windows 2000 Member Server in an NT domain with CiscoSecure ACS 3.0. The CS services are all started with an NT domain admins ID.This system is used to authenticate Internet users (outbound) using TACACS through a PIX firewall.The A...

Hello all,I have a router 2500 running ios version c2500-i-l_112-16.the router is configured as follow to allow telnet session :...enable password *****!line vty 0 4 password ******login...I added the command line "aaa new-model" to check the aaa com...

Can I use a MS certificate server to authenticate PCs going through a 3015 VPN concentrator? The need is to ensure that we only allow approved PCs through the link. Using a shared secret is not enough because an end user that knows the shared secre...

We use the PIX AAA Authentication possibilities to authenticate users.Using virtual Telnet seems to be possible to Log out and more important to change the password on the ACSDoes anybody know if there is a way to do this also via http. Virtual http ...

Hi:I want to use aaa in a pix 525 with tacacs+, my tacacs+ server is a unix server with ACS 2.3.3 ; I had already configured the pix with this commands.aaa-server prueba protocol tacacs+aaa-server prueba (inside) host 192.168.49.151 testkey time...

In a VPN 3000 Concentrator config, what are the ramifications of an unauthorised user knowing the group username and password?I have a situation where a proposed solution has a single group defined, which all users are part of. The group username and...

I have a CVPN3015 and now I want to setup VPN client to authenticate with my AD. Can it be done?CVPN3015 with NT domain (NT4)is OK!