Cisco Support Community
Showing results for 
Search instead for 
Did you mean: 

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

ACS deployment in IBNS

Hi to all,

We are designing an IBNS system, one requirement is that we want to tie one usera specific PC(identified by MAC or certificate), as a result, that user can only logon to the network with that PC. Is it possible to achieve this in ACS?

As a alternative, can we enforece policy based on the PC identity(since certain PCs are regarded as in-sue

Tks in advance!


Re: ACS deployment in IBNS

Cisco Secure ACS is an essential component of the Cisco IBNS solutionan architecture built upon the 802.1X IEEE standard. As a centralized authentication server, Cisco Secure ACS brings RADIUS-based AAA capabilities inside the LAN (both wired and wireless) when traditionally access control was managed at the edge of the network. In particular, IBNS in conjunction with Cisco Secure ACS provides the following benefits:

Strong authentication using public key infrastructure (PKI), token, and smartcard. This is particularly important in wireless LAN environments where vulnerability to rogue security attacks is fairly high if strong and mutual authentication methods are not used.

Flexible policy assignments (such as per user quotas and virtual LAN (VLAN) assignments)

User accounting and auditing and ability to track and monitor user behavior inside the LAN

IBNS ties identified entities (both user- and device-based) with policies that are centrally created and administered by Cisco Secure ACS, providing superior granularity of control and flexibility.

CreatePlease login to create content