Network Access Control

Is there a way to change the ports that RADIUS listens on from the default?

We have installed the Cisco ACS 3.0 server(evaluation copy), after the setup, we are able to authenticate the Shell(Telnet) users logging on to the NAS, but we are not able to authenticate the PPP users on the dialup, there seems to be no problem on ...

The router has been to configured for AAA from ACS over 64 Kbps location. Router attempts to obtain authentication info from server but fails (ERROR) and jumps to next authentication option (local or none). Router ver:12.07T .The ACS client IP addres...

I am trying to merge the network settings and local user & group databases between to master ACS servers. My understanding is that when you do replication it copies a "mirror" image of the field in question and pushes that out to replication partners...

CAn anyone point me to resources to undertand the operation and interrelation of Network Device Groups and Network Access Restrictions. Also specificall yin th euse and abuse of the AAA Client called "All AAA Clients"

I'm trying to setup ACS 3.0 to permit access only to the aux port for a router. I have a PABX Console port hangin aux 0 so I'm using the router as a kind of Term Server with authentication and central logging. The obvious config step is to specify...

Trying to restrict users to a single device group e.g. 172.17.*.*. I can get it to work fine using "Network Configuration-> Network Device Groups"but I can't set up overlapping NDGs.Now I can't get NAR to restrict access. ** My NAR call "172.17-Eur...

I currently have users that access our Exchange servers via Cisco VPN client to my VPN 3030. Authentication is NT domain, and works great for most of us. The problem is my NT admin setup 250 more users, and set password expiration on next login. I w...

Can a 3.5 software client be authenticated on a 3060, and the users be authenticated by Microsoft AD? I know it gives you the option of NT Domain, Radius, SDI, or internal. I tried setting a group to external and setup an authentication server of one...

Hi,Is it possible to use an IAS installed on a NT4 PDC/BDC to authenticate VPN3000-clients connecting to a PIX515? It seems not to work using "domain\username" in the VPN-client?Or do I need to install the IAS on a standalone-server and use local use...

I'm trying to set up a group (Help Desk) that will only allow a few "show" commands, but restrict everything else - I'm unable to get this working. Can this be done, and how? I've got the user and group priv levels set to 0, I've also go the 2 "sho...

hi everyone. im doing a cisco 1720 site to site vpn using 3 desi am unable to get to pipex site and am being blocked for some reason.within the config you will see three usernamesthe pipex is the one id like to connect to. the other two are made up ...

I am trying to assign some show command to privilege level 1 such that our first line support can telnet to the PIX and do some command without going into enable mode. I assign the show interface command to privilege level 1 but I can't execute the c...

Hi,I set up a IPSEC VPN tunnel between corporate network using checkpoint NG FP1 and a branch office running PIX 501(6.1 Ver). The client machines behind PIX are not natted when passing through the tunnel but natted when accessing the internet. The t...

Is it possible to configure an exclude statement to allow a workstation on the inside interface access to the PIX console via Telnet without requiring a username and password?