Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
I'm trying to setup management logins for the IronPort S170 using RADIUS. I have the Windows server configured and the server information is in the S170, but I'm having trouble with the Group Mapping. Under the RADIUS Class Attribute, what is an ex...
Is there a consensus or best practice that covers where is the best place to block unwanted traffic? By that I mean, should I block it at the router, firewall, IPS? As an example, I'm dealing with DNS flood attacks - probably DDoS and reflection. ...
I thought it would be easy to find a tool that would monitor my Windows DHCP server database and alert on leases to new MAC addresses. I'm finding that not so easy. As I thought about it, I thought it might be better to focus on reading the ARP tab...
Is there a way to change the timeout for the Client Excluded: MACAddress status? It seems like the exclusion is rather short. I'd like to have the ability to control the exclusion time. Using WLC-5508 7.0.116.0.
It appears that there are two different types of log information generated by the WLC-5508. The stuff that can be sent directly to syslog seems to be very basic while most of the good log information is sent via snmp trap. Does anyone have this set...
According to TAC:"the WSA does not support “chap” as of now. There is a bug opened and developers are working on it. Bug : CSCzv38428 Support RADIUS CHAP protocol for External Authentication"Enabling reversible encryption in AD is not an option.
I was a little brief in my last reply. I should have included that CHAP does not work. The following error is recorded in the log: "The user could not be authenticated using Challenge Handshake Authentication Protocol (CHAP). A reversibly encrypte...
That's what I thought. I tried that and I get auth failures. In the log on the Windows server, I see "The user attempted to use an authentication method that is not enabled on the matching network policy." I then noticed that the policy was set fo...
That seems to go into more router/switch specific stuff. I tried to put together what I thought was correct. But what gets added to the RADIUS Class Attribute in the WSA? The Windows Group name?
