Network Access Control

I need to exclude a monitoring software user name from the "aaa accounting commands" config. However, I have not found a way to do this. Does anyone know how I might be able to exclude users on the IOS end and not the server end?thanks,Geoff

Hello,I've a 3620 configured with AAA authentication for outbound Profile on ACS 3.0.I use dialer AAA with a ip route witch redirects to an dialer interface with the name of the outbound profile. When the 3620 trys to connect to the remote router wit...

Dear All,Here is my test result regarding group delimiter:Settings as follow:1. Checked "enable group lookup" at System->General->Authentication Group delimiter "@" selected.2. Checked "Strip Realm" at Groups-> General setting (group name is testg...

Is there anyway to configure PPTP to work without local authentication?

Hello,Do you know some problem with double authentication in chap with Zyxel router.thank you.

I would like to know if there is supportted for the Cisco 827 and Soho 77 the authetication of access with a Radius Server. If the answer is yes, in which IOS?

The problem I have is to get per user authorization workingI have got per user authentication working for HTTP FTP TELNET but how do I get per user authorization working with ACS 3.0 on PIX 6.22I am wanting to use TACACS+ The commands below are what ...

Hi,I have tested AAA accounting with a router / ACS (CSNT) and can't configure them to register each command executed by the user logged inthe console.I used these commands:aaa new-modelaaa authentication login default group tacacs+ lineaaa accountin...

Hello,We installed few months ago ACS 3.01 but we receive each 20 minutes a warning in the event viewer. There are also some errors messages about the perfdisk.dll and the tac_mon.dll. The ACS works but it is painful to have log files full with mes...

I have setup SDI authentication on the VPN concentrator and it works perfectly - but I want it such that when a user is authenticated from the SDI server it then goes back to the concentrator and gives the user a specific IP...not from a pool.Thanks ...

We have many domains, one in particular with 3500 users of which perhaps 1500 are used regularly.Recently, we have found that the domain is not identical between the two AAA servers. Both servers are geographically isolated, but have good connectivit...

This was originally posted in the VPN-->security sectionWe use Cisco VPN client v1.1 for remote access to the network. I need to make some config changes and I'm trying to understand the existing config so I don't mess up the present connectivity (I'...

RADIUS AUTHENTICATION SYNCHRONIZATION FOR A RAS/VPN SESSION.For a VPN Client, connecting to a VPN3060 concentrator on a dial-up sessionQUESTION - Can RADIUS ACS by synchronized for a Single Sign On use of both the RAS DialUp and VPN Client session. ...

I have a problem I am not able to have the users who begin a SSH connection authenticatedthanksbye

Network:NT 4.0 single domain network. (2 domain controllers)Cisco 3005 VPN Concentrator Version 3.6Client:Version 3.6 on Windows 2000 Pro boxProblem:I setup the VPN box with both an externally configured group (one of my standard NT groups ie. Domain...