Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi, We have a problem, our secondary ACS 5.3.0.40 B.839 system is unable to ping anything including it's own gateway. The error when issuing a ping to the gateway from the CLI is "Error invoking ping for the provided host"I've tried restarting the A...
Hi, I need to reset the CLI password on our Cisco ACS appliance 3415 not seeing install disc from an EXTERNAL dvd drive so I can use the install disc boot options to reset the CLI admin password.I've managed to press F2 and use the over ride boot pri...
Hi, I have an authentication problem with load balancers and ACS 4.2 (1) build 15 patch 4. The load balancers don't register as a fail or pass on the ACS.I've made an account called aceadmin, and it has unrestricted level 15 commands and it's own she...
Hi , a security audit has found that the SSH server service on our ACS 5.5.0.46 is configured to support Cipher Block Chaining (CBC) encryption. This may allow an attackerto recover the plaintext message from the ciphertext.The advise is to enable CT...
Hi, I am having problem viewing the contents of our patch repository on an sftp server. I will need to install a cumulative patch from the remote sftp repository at some point. I patched using the same sftp repository folder back in June and had to r...
Neno, yes the DVD disc is bootable, but we've read the 5.5 install pdf a few more times and seen that the Cisco 3415 Appliance has to use a bootable USB pen drive to reset CLI admin passwords (or re-install the ACS app) , not DVD drives.Unfortunately...
Hi,The crypto host_key add host ip_address_of_sftpserver from my original post had worked.I was using a VM Sphere console to access the CLI on the ACS appliance this time which refuses stfp.If I use a Putty.exe conncetion from a terminal server (whi...
Hi, I ran a variation of cciesec2011's command with 8 hmac variations, the results indicate that all of the encryption levels can be used.echo | ssh -v -m hmac-sha1 admin@localhost 2>&1 | grep "kex" I substituted -sha1 for md5 , ripemd160, sha1-96 ,...
