Network Access Control

Yesterday I was that ACS2.6/3.0 have Security Vulnerabilities, Can some one tell me what they are, wher to get the fix or patches for it.Thks, Sarkis

Here is the scenario:1) We have a group of people that manage all network equipment and need full access to each of these devices.2) We have another group that only needs user access to 2 of these network devices for doing 'show' commands.I have been...

I was looking for a certain features that was reported for me by some customers. I hope someone has noticed those:1- When the ACS assign the ip address for the users from a pool defined in the ACS, how can I know which user take which IP. If I check ...

Hi,We have a site-to-site VPN tunnel created between two sites using two PIX's running version 6.1(1) software. We want the users from the remote network to be authenticated using RADIUS / TACACS+ server before they can access the network (for any IP...

Is there a way to determine if Cisco ACS is communicating to a generic LDAP server for authenticating users? I'm having problems with clients authenticating but I can't seem to determine if the Cisco ACS server is properly configured and working corr...

Hello Security Guru!!!dit somebody got any expreience with the sigle sign-on Authentication?thank for your helpAlain

In my last message about "PIX intermittently stops AAA with CiscoSecure ACS/NT", I was asked if I was using the older 'aaa authentication include...' command to invoke CiscoSecure ACS / TACACS services on my PIX 520 with OS 6.1(1). That raised a big ...

Wondering if anyone has had this problem before, I just downloaded the trial version of ACS 3.0 in order to see how it works for wireless authentification, im trying to get it set up on a Windows 2000 Server on a Dell Server machine(with a clean inst...

Hopefully someone has heard of this...I have a customer with a PIX 520 (with 6.1(1)), which does AAA (Authentication Authorization Accounting) with CiscoSecure ACS/NT to authorize users to access the internet from inside the firewall. From time to ti...

Here is the problem:I have Citrix server inside and want to authenticate outside users for that service. A have ACE server installed inside speaking RADIUS. Since PIX can not autheticate traffic other than http, ftp and telnet, I need first to authen...

Hello, I have a remote windows 98 machine that is part of a windows 2000 domain and authenticates to the PDC across the vpn. This works fine with no prob, but I want to protect the PDC / mail server that is connected to the internet with reflexive A...

I know that we can setup AAA to log information about who logs into the device (and failed attempts) if we were using RADIUS or TACACS+, but we are just using local usernames in the devices. Is there a way to log this information to syslog in any wa...

At the university of hartford, we would like for our leap authenticated users to be assigned an ip address by the ACS server itself, like a modem pool. Is it even possible to set up dhcp in such a way with ACS 3.0 so that only leap authenticated use...

we are installing acs v. 2.6 and we would like to know if it's possible to assign ip addresses from the dhcp server when we use tacacs.

Does anyboby know which are the ports that the ACS v3.0 on Windows2000/NT Server opens? This is because I have to open an access on a Firewall for people connecting to the ACS to manage it by browser.