Network Access Control

I have a Cisco 3640 with 6 BRI's connected with a Cisco Secure ACS 2.3 using the TACACS+ protocol.The Cisco 3640 is running c3640-i-mz_120-7_T and every call (vtemplate, vprofile, large scale dial-out) is working fine (including Calling Line IDentifi...

I have checked the boxed to enable the display of all the VPN parameters for users and groups, but the heading diplays without any options. Is this a bug ?TIA Simon

Hi,I want to restrict my Helpdesk 1st level support to these commands only:show vershow running-configsh ip interface briefpingtraceroutelogouthelpI created a Shell Command Authorization Set with only these commands available and associate these comm...

I have Cisco ACS 3.0Authenticating with no problem using my PIX 515 firewall.When my remote clients access my internal exchange 2000 server via a browser, they authenticate fine. After a couple of minutes they are forced to reauthenticate with their ...

I setup the ACS server following this link http://www.cisco.com/warp/public/707/CiscoSecure.htmlEverything works fine but the VPN's group filters are being used. If it possible to setup filters on the ACL for each group.I want to limit access to cert...

We're running version 3.6.3 on our concentrator and client. We've got a group defined 2 authentication servers defined a) radius b) NT domain. What we'd like to happen is, if 'A' is down, authentication against 'B'. Is that even possible?

I am struggling to get my head around NARS - the documentation says which buttons to press but I am struggling to figure how to do what I want.Lets says I have a group of uses (600+ and rising) that I want to allow to access via AAA client "concentra...

I am able to connect to the VPN3005, but athentication to the NT server fails.I can authenticate to internal serer fine. Only problem with NT Server authentication. Thanks in advance.Jayesh

Hi,I've a Cisco3640 router configured for ISDN backup and dialin purposes. The dialin clients are authenticated with their NT Domain username/password through the ACS. The asyn dialin facility works well but the ISDN clients cannot connect, they get ...

Single authentication from VPN to windows domain Problem: Executives cannot remember two passwords (one for VPN and one for Windows Domain).How the solution should feel: User “A” logons from home via VPN, through that authentication process they ar...

Has anyone ever seen this in the TCS log on an ACS 3.0 NT box?TCS 01/13/2003 15:38:05 A 1672 0081 Note: The maximum 40 sessions are busy. If the system is consistently under load you may wish to increase the number of sessions. (This is a registry co...

I'm using:CiscoSecure ACS v3.0 for Windows 2000/NTRelease 3.0(1) Build 32My network routers and switches are from multiple vendors, Cisco, Extreme, and HP. Some of the equipment supports radius, some Tacacs, and some both protocols.I want to control...

I'm using PIX 515E with 6.2 flash.Also, I'm using Cisco ACS 3.02I'm trying to implement NAR (Network Access Restriction). Does it only work with TACACS+, or will it also work with RADIUS?Thanx

Hi. I'm trying to configure a Radius server fow a remote users with CHAP authentication. I get this message:Mon Jan 13 15:11:13 2003 : Error: ERROR: Cannot find a configuration entry for module "chap".I don't know which files I have to modify , ...

I have an ACS 2.4 which is configured to screen the caller id incoming to the NAS Cisco3640.The problem is that some ( maybe 5 of 100) of the incoming calls will be denied . When they tried it a second time, the incoming call will passed without pro...