Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
We have a client who has 3 (three) AD forests. Is it possible to have one ACS server authenticate VPN users from all these forests using their AD credentials?If yes, please provide the URL link of the document that has details about the above configu...
We have a Cisco ACS server V 3.0 running on Windows 2000 SP2. We plan to upgrade the same to Cisco ACS 3.2.3 running on WIndows 2003. The direct upgrade path for Cisco ACS 3.2.3 as per the Release Notes is from 3.1.2, 3.2.1 and 3.2.2.Can someone prov...
I have a AP1200 with 12.0(2) T1 image. It is configured to authenticate using EAP. The client used is Cisco ACU version 6.2 on Windows 2000. The RADIUS server used is Cisco ACS 3.2, configured to use Active Directory as the external database. LEAP is...
I have a situation where it is required to do NAT with different pool when passing through GRE tunnel and through Serial interface directly to Internet. The GRE traffic is also encrypted using IPSec tunnel. I intend to do CBAC inspection at the outsi...
We have a hub-spoke VPN network with VPN 3030 Concentrator at the hub and VPN3002 at the spokes, connected through Internet. The Software version running is 3.5. Whenever Internet connection at the spokes has interruption, the VPN tunnel is not recr...
I did reinstall the Certificate many times, but it is working only with native Windows XP SP1 client and not with Windows 2000 or Cisco ACU. The ACS permissions were checked and found to be in order.
Why not use Username/Password (NT Domain or Active Directory) authentication here for individual user authentication. In any case users will have accounts in them and ACS server can be configured to use the above databases. Of course the Domain Contr...
A very interesting question. I agree that the concern should be "What damage can be done before it is noticed that the box is gone?" It is posssible to configure XAuth where each machine has to be authenticated before any network resources could be a...
