Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi,Our ACS is used for AAA for wireless, IOS CLI access and unix server access. For both net admins and unix admins, there are two levels, so effectively we have 5 individual device groups which a user may be permitted to access.User groups are defin...
Dear all,I have been trying to set up a router to dial in to a MS2k RAS box (BRI to PRI). I am getting the following error on a ppp auth debug and I'm not sure where to go next. Any advice would be gratefully received.02:30:18: BR0/0:1 PPP: Using dia...
Hi,I have had a problem recently where when trying to copy images larger than 16Mb via TFTP to various 3600 routers, the transfer fails.The pair I am currently working on are running 12.2(11)T2. I need to get 12.2.15T onto each router, but when I try...
JG,Thank you for the detailed reply. If I understand correctly, I cannot do anything clever with NAP etc, instead the only way to have some netadmins that can access unix and some that can't is to create a hybrid group in AD/ACS which has users allow...
That should be a $0 item which denotes the Advanced Security IOS itself.I believe these codes allow Cisco's ordering systems to understand what's been ordered and attribute it to the correct divisions etc.
Do you have the access list "NONAT" specified in your config?Do you have other working tunnels on the device?Have you used the command "sysopt connection permit-ipsec" or allowed access to the LAN address on the outside access list of the PIX?
