Network Access Control

Reauthenticate by NAC

Hi All, we have deployed L3 in-band scenario for wireless 2 years ago and the solution was working without any problem. we have upgrade wireless controller to 5508, since then, when users login to the first page and certified, and they want to browse...

first time CoA

I have this problem where first time users hit default reject profile because they are not being profiled. They remain unknown until i reconnect. Can this be because of the access point is 1231 converted to lightweight. (it does support change of vla...

setup AAA for anyconnect with active directory on asdm 6.4

good morning Im sure this has been asked before but a quick search has not yielded any exact results so here goes I have anyconnect up and working great on for vpn users using local authentication. Im going over the white papers and seeing a lot of o...

ACS 4.2 tacacs custom attribute for Nexus1000V

Dear All! Please, explain how to add tacacs custom attribute to ACS 4.2 for Nexus 1000V:shell:roles="network-admin admin-vdc"In the interface configuration I've added new service, service - shell, protocol - tacacs+.In the group settings I've enabled...

ISE 1.1/WLC 7.2 Wireless MAB and Profiling

I am trying to set up wireless MAB with CWA so that when devices connect to the open guest network they are profiled and if they match a device type (iphone, android) they are allowed access to the internet without AUP or Authentication and all other...

Supplicant Client Provisioning for Windows + NAC - is it supported?

Hello, I'm testing out a scenario where it would be most interesting to be able to provision a windows laptop from connecting to a Guest SSID with it the wireless settings it would need to access a secure SSID where then it would be Posture assessed....

Cisco ACS 5.3, Active Sessions are over limit e-mail alert.

I have recently enabled the SMTP alert function in ACS 5.3. It seems to work well for most of the alerts. One thing though, the active sessions are over limit warning that comes up every so often. I know it is not impacting operations and it is ACS's...

Resolved! downgrade ACS 5.3 to 5.2

Hi,I want to downgrade an acs acs 5.3 to 5.2 - I have looked through the documentation, but somehow I fail to find the exact commands for the downgrade.Previously I just used the recovery cd to reinstall the image, but it must be possible to do a do...

ACS 5.3 monitor and report database can publish to external database，then other application can to use it?

ACS 5.3 monitor and report database can publish to external database，then other application can to use it?now I want to read monitoring and report database,but API of ACS is error.we want to publish database to external database really.Thanks

Resolved! Performance numbers for acs v.5

Hi,does anybody know how to get any numbers regarding performance for acs v.5 ? I have looked through the documents but couldnt really get any idea. I am looking for numbers like:how many:authentications per seconds per appliance Especially in a WL...

Resolved! Secondary ISE cannot join the primary node with error message

Hi,I have just installed the secondary ISE and did the followings, but when I try to join the primary node, I received the Cannot authenticate the primary ISE, please check the server or certificate and try again.- promote the secondary from standalo...

ACS v. 5.1 Authentication methods

Hello,I hope my question has not been yet asked. But it's so complicated to explain that I don't even know on which keywords to search.I'd like to define 2 types of users on my ACS:1- Users who use basic authentication with a password2- Users who use...

Resolved! ISE and WLC for posture remediation

Please can anybody clarify a few things in relation to ISE and wireless posture.1) Is the ACL-POSTURE-REDIRECT used for remediation, or is it just an ACL to redirect only some traffic to kickoff posture checking?2) Can/Should a dACL/wACL be specified...

ACS 5.3 - Connection to external ID store - encrypted?

Pretty sure this is a dumb question, but are the connections between the ACS and external identity stores encrypted?I know that when setting up LDAP identity store there is the option to specify SSL conection. Are the other connections encrypted by ...

Resolved! Cisco ACS 5.3 connect to multiple identity stores / external database?

Hi ThereI understand that Cisco Secure ACS 5.3 supports the integration with existing external identity repositories such as Windows Active Directory and LDAP servers. In fact, in my environment, my ACS 5.3 is now integrated with AD and RSA.My questi...

Network Access Control

Forum Posts

Reauthenticate by NAC

first time CoA

setup AAA for anyconnect with active directory on asdm 6.4

ACS 4.2 tacacs custom attribute for Nexus1000V

ISE 1.1/WLC 7.2 Wireless MAB and Profiling

Supplicant Client Provisioning for Windows + NAC - is it supported?

Cisco ACS 5.3, Active Sessions are over limit e-mail alert.

Resolved! downgrade ACS 5.3 to 5.2

ACS 5.3 monitor and report database can publish to external database，then other application can to use it?

Resolved! Performance numbers for acs v.5

Resolved! Secondary ISE cannot join the primary node with error message

ACS v. 5.1 Authentication methods

Resolved! ISE and WLC for posture remediation

ACS 5.3 - Connection to external ID store - encrypted?

Resolved! Cisco ACS 5.3 connect to multiple identity stores / external database?

Congratulations to the Event Top Contributors Class of 2024!

Cisco + Splunk: It's a new day for your data.

A new chapter of the Spotlight Award begins!

Join us in Celebrating the New Year and the Nov.-Jan. Winners!

Announcing Resources That Guide You to Success

how to convert a ise policy set xml file into excel?

ISE BYOD machine authentication 3.1.0.x

ISE and Entra ID with 1 certificate for multiple usecases

Cisco ISE 3.1 WLC Captive Portal - AUP Error Apple Devices

.

Cisco ISE and MacBook

CiscoISE policy applying on switch problem

15024 PAP is not allowed

Cisco ISE: Sponsor decide duration by Approval

ISE - Sponsor Approved Guest Access