I am running Cisco Secure ACS version 4.2 running on a

Standalone Windows 2003 Enterprise 2003with the lastest

windows service pack and update. Secure ACS is running

fine and I can authenticate with Cisco routers and

switches. The Windows 2003 server is also running Microsoft

IIS Server. In other words, the IIS server and Cisco

Secure ACS is running on the same windows 2003 server.

I am trying to get Cisco User-Changeable password to work

with Cisco Secure ACS. I followed the release notes lines

by lines and the work around provided below:

Also server require more privileges for the internal windows user that runs CSusercgi.exe.

The name of the windows user that runs UCP is IUSR_<machine_name>.

Workaround steps:

1) Install UCP 4 on a machine that runs IIS server.

2) Open IIS manager

3) Locate Default Web Site

4) Double click on the virtual name 'securecgi-bin'

5) Right click on CSusercgi.exe and choose Properties

6) Choose 'File Security' tab

7) Choose 'Edit' in 'Authentication and access control' area

8) Change username from IUSR_<machine_name> to 'Administrator' and enter his

password (make sure that 'Integrated Windows authentication' is checked)

I still can NOT get this to work. I got this error:

It says:

The page cannot be found

The page you are looking for might have been removed,

had its name changed, or is temporarily unavailable.

HTTP Error 404 - File or directory not found.

Internet Information Services (IIS)

I modified everything in the Windows 2003 to be "ALLOWED" by

EVERYONE. In other words, there are NO security on the windows 2003.

It is still NOT working.

The other question I have is that can Cisco UCP allow user

to change his/her enable password?

Can someone help? Thanks.