Heads Up :
The post you are writing will appear in a public forum. Please ensure all content is appropriate for public consumption. Review the employee guidelines for the community here.
Hi everyone.
I´m trying to export the user database from an ACS in version 5.7 to import it in other ACS 5.7. My concern is that I see the password parameter empty in the CSV file that it generates. Does this mean that I need to assign a new passwor...
Hi Guys.
I would like to know, in your experience how long does it take to create a full backup in an ACS 5.2 version. I ran the backup and it´s been a long while now, over an hour and it is not finished yet. Thank you for your comments
Hi everyone. I have a pair of 5545x in HA. I want to perform a software upgrade from version 9.1(2) to 9.5(2) with zero downtime. I was wondering if it is possible to perform this upgrade directly or if I have to go through all the minor releases fir...
I have a fairly simple lab environment with ACS 5.2, where I have 2 identity groups and 2 device types, where I want users in one identity group to be able to authenticate only on devices in the corresponding device type. I have my policies in place ...
I have configured an AnyConnect RA VPN on a 5525x ASA in version 9.4. I configured it so that it will perform authentication through a RADIUS server (which in this case is an ACS 4.2). The problem is that I can´t authenticate to the VPN, even though ...
Thank you so much Jatin, you were right that was it. I just restarted de ACS server and it worked right up. Now, how do I reference an external identity source in one of this policies? For instance I want the users from active directory only authenti...
Thank you very much for your help Richard. In the end it was an Anyconnect incompatibility since I was using an old one. After I updated it everything worked fine.
Sure! that makes sense. I will try watching the debug messages. Also, the ACS 4.2 has like a lot of flavors of RADIUS. One specifically says "PIX7.1+/ASA", but let´s remember this is a very old ACS trying to work with a new version of ASA. I´m thinki...
Thank you Richard. The ACS is only for VPN authentication. For sure there is at least one-way communication between the ACS and the ASA, since I can see my authentication attempts in the ACS and I can see it as successful. Perhaps the ACS is failing ...
Yes, I mean, it works, but I want to recieve the route from the local site, not from the redistributing source and it should have an internal EIGRP route, not the external that you see there.
