Hi forum folk, I wonder if you can assist? We run a vpn web VPN portal from our ASA 5540 - in order to access this web portal the users are required to install a valid certificate> This works perfectly. However, I have recently been informaed that users that do not possess a valid certificate can still access two screens on our portal. Namely the change password and the change pin screens - see images below: As far as I can see these screens don't serve any function - if any information is entered in the password/pin boxes and continue is pressed then they just get presented with the following screen: Is there a way to disable these screens from appearing to users if they dont have a certificate? Any help would be much appreciated. Best regards, Thomas. ... View more

Hi All, I am nearing the final stages of an ACS Ver 5.3 deployment and everything is working as it should with the exception of our test wireless users. Thus far I have: Configured an "Identity store sequence" that consists of : -acs internal db -External radius server This is called "VPNSequence" I have also configured an Identity store sequence of : -AD -LDAP This is called "Wireless Sequence" I then configured the identity section of the "default network access" service. I put a condition that will match the vpn access (for example "if network device belongs to the network device group called "VPN concentrators".  The identity store used will be the sequence I created above ("VPNSequence"). I then created a second rule (for point 2) that will match wireless access (if network device belongs to WLC group for example) and that will use the sequence "WirelessSequence" as identity store. I then created a Certification Authorisation Profile and applied it to the Wireless Sequence. I then tested an XP laptop on a Test_WLAN wireless network that authenticates using the new ACS device - when it attempts to logon I get a message on the laptop stating that I have to "Click here to process your logon information ...". When I click on this it asks me to re-enter my AD password. (This occurs even when I remove the Certification Authorsiation Profile from the Wireless Sequence" described above. If I enter my credentials I connect no problem. However, this is not ideal for a smooth transition from ACS 3.3 to ACS 5.3 for our Wireless End Users (numbering in the hundreds). They will no doubt bombard our helpdesk when this prompt appears for their wireless connectivity. Is there anyway I can configure the ACS so that they make a transparent connection without the need to re-enter credentials? Any help would be much appreciated - please let me know if you require further information. Kind regards, Thomas. ... View more

Dear All, I am relatively new to the world of Voice but I am learning quickly. In my current position I have 3 CCME routers. Two of them are working fine. However, the third machine does not allow me to do any configuration via the GUI. The page displays but is missing some gifs etc.and therir is no functionailty with the links whatsoever. I thought I had a corrupt flash and sure enough when i access the CCME via CLI I ran a "Dir flash:" command and got the following display - Sawan-cme#dir flash: Directory of flash:/ %Error calling getdents for flash:/ (File not found in Inode table) 2047541248 bytes total (1872658432 bytes free) However. the flash problem has now been resolved but I still have a broken administration page. Thus far I havent had much success in resolving this issue but I came across this post on a blog which seems to be the same problem as I am having:- http://webmaxtor.blogspot.com/2007/07/cucme-callmanager-express-41-gui.html This person managed to fix the problem but just says the answer can be found on the Cisco site. I wondered if anyone has came across this problem and whether anyone could point me in the right direction for a resolution. Kind regards, Thomas. ... View more