Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Greetings, I've been having some trouble with the ACS x AD Identity Store, since the ACS randomly disconnects from the AD domain and I have to manually 'Test Connection' to get it working again. Because of that, I was wondering if there is any way ...
Greetings, I have a simple ASA, ACS, AD schema for RA VPN authentication. All is working for a few months now, but since the initial deployment we have this connectivty issue regarding ACS and MS AD. At random intervals, 1 month/1 week, the ACS con...
Greetings all! I'd like to ask you guys, if you ever had to configure a deploy in the way my client wants. We're using Cisco Secure ACS 5.2 as a Proxy AAA server, using Active Directory as an External Identity Store. They are already synced and con...
Greetings!I'm using a 6509 Sup720 FWSM VSS Cluster. Failover isn't active on FWSM modules yet, so I'm using the FWSM module on slot 4 of the VSS Switch and I'm using multiple contexts (multiple-vlan-interface enabled), 1 routed and 13 transparent. Th...
Greetings! I'm currently on a project which uses FWSM modules on 6509 Chassis running VSS. I'm facing some dificulties to set remote admin access to the 6509 through 2 FW contexts from WAN. This should be a simple task but... What am I missing? ...
Hey Nicolas! Thanks for your reply! Unfortunately I don't know how to make a compound condition using the 'msNPAllowDialin' attribute. Using the 'company' attribute I was able to do a compound condition, since the ACS actually gets that from the use...
Ok! I've managed to get the 'company' attribute working and use it to trigger the various Group Mapping >> Authorization Profiles I have configured in the ACS.The remaining problem is the 'msNPAllowDialin' attribute. Is there any way to do this check...
Hello Ashok! Unfortunately the Cisco NAC solution needs both Clean Access Server (CAS) and Clean Access Manager (CAM) in order to work properly. Since the CAM retains all security policies and the CAS actually implies them into the network. So you'...
