Buy or Renew
Buy or Renew
Duo Security forums now LIVE! Get answers to all your Duo Security questions. Learn more
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
303
Views
0
Helpful
1
Replies

Cisco VPN 3000 Concentrator and NAC

cookepsl
Level 1
Level 1

‎04-30-2007 06:36 AM - edited ‎02-21-2020 03:00 PM

I am using a 3000 series concentrator to enforce network admission control for remote clients comming in VIA vpn. We are using Cisco NAC framework using ACS 4.1 but we notice posture validation takes a long time and the downloadable filter is not applied allowing access to the network for several minutes. Is there anything I can trouble shoot or tune to speed this process up. It should be noted that the clients are trying to ping through the sensor as soon as the tunnel is up so the EAP challenge should take place straight away. We are also using Cisco's CTA on the clients

Labels:
0 Helpful
1 Reply 1

aghaznavi
Level 5
Level 5

‎05-04-2007 10:36 AM

think your problem is indicative of the EAP type not being enabled in the authentication settings. If you are using the Network Access Profiles in your ACS configuration, then the EAP type being used needs to be enabled within the Authentication settings of that NAP. Following link may help you

http://www.cisco.com/univercd/cc/td/doc/product/access/acs_soft/csacs4nt/acs40/user/sp.htm#wp1123517

0 Helpful
Customers Also Viewed These Support Documents