Network Access Control

I am trying to configure RSA token authentication through a PIX firewall. Does anyone know if PIX supports next PIN mode through RADIUS, and what the configuration might be?

Am I right in assuming that the VPN3000 can only authenticate against NT servers or HYBRID Win2000 servers - NOT pure Active Directory (i.e. Kerberos)?If so, will MS IAS (Microsoft's free Radius server) allow me to authenticate indirectly against Act...

I am using Cisco Secure ACS 2.5 on NT to authenticate users connecting to a VPN 5001 concentrator (V5.2.19). ACS is configured to authenticate against an external DB (A windows NT Domain). Everything works fine until a user incorrectly enters their p...

We are trying to put an OWA Server for Exchange 2000 in the DMZ. We cannot logon to the domain when we have the server in the DMZ. What ports need to be opened or other configuration needs to be done to get authentication to work through the Pix.T...

I'm trying to authenticate users coming from an outside LAN through my PIX 520 to the inside. I have set up IAS on my win 2k server and when I look at event viewer it states that the user has been authenticated but the user is never authenticated th...

Hi everyone!!!I'd like to know if is possible ACS authenticate only LAN/WAN traffic.In other words if I can configure access-list profiles and configure a specific user or group in ACS for it or vice-versa.My cenario is follow:I have a separeted netw...

hello,I've a NAS configured with an IAS Radius server(W2K) installed. Everything is working fine except for callback. I'm using MS-chapv1 for authentication. When I specify a callback number in the user settings in the Active Directory, I receive a "...

Anyone know if the RADIUS attribute - Filter-ID - in ACS will accept a word/description rather than the normal number string (i.e. access-list) ?? Like if you had an access-list with a name rather than -access-list 101 ??

We are running ACS 2.6 for authentication with a PIX515 ver 6.1our customer want to authenticate users based on their Name, PassWord and IPaddress or netbios name. we have configured the ACS to use the NT Database,we belive that with this configurati...

Hi,I have a PIX which is accepting DMZ-Inside TCP connections and auth'ing them with ACS, I'm having probs getting the accounting to work correctly & show 'logged-in-users' for the PIX. AAA is all setup on the PIX, just doesn't seem to work, any ide...

Can someone tell me how to use the win2k IAS instead of the cisco ACS with a PIX for authentication.We love the ACS but have some smaller clients that do not want to pay for ACS.thanks very much!

I would like help regarding setting up TACACS+ authentication for logging into router/switches via VTY (telnet). I know how to configure router/switches but not how to setup the ACS. I'm running ACS 2.6 for Windows NT.Is there anyone who have example...

i have a 2511 access server. using "aaa accounting network start-stop tacacs+" for dial-in on ver. 10.3(19a) and nothing get logged to my server or appears with "debug aaa acounting". need help, thanx.

Peeps:I'm currently using Cisco 2511 to accept PPP connections through asynchronous ports. I've configured PPP to authenticate locally and it works just fine, but the problem is i can't see the username of the person who connected to my asynchronous...

I configured IAS(RADIUS) on IIS4.0(option pack) & cisco AS2511RJ as NAS.I put radius only as the authentication method & every thing works perfectly except AAA accounting.AAA accounting does not create any logs on the NTserver.(I checked all the bas...