11-01-2001 09:41 AM - edited 02-21-2020 09:57 AM
We are running ACS 2.6 for authentication with a PIX515 ver 6.1
our customer want to authenticate users based on their Name, PassWord and IP
address or netbios name. we have configured the ACS to use the NT Database,
we belive that with this configuration the user is authenticated used just
his name and password without any restriction based on IP address or netbios
name.
please can you get us with any solution for our customer problem .
11-07-2001 11:57 AM
When Authentication is configured on the PIX, the user attempts to get past the pix and is prompted for username & password authentication credentials. Those credentials are passed on to (in your case) Cisco Secure ACS and checked against the domain database. If okay, the PIX caches this username and password (see the show uauth command) along with the IP address of the authenticated host. When that source IP address hits the PIX again, no re-authentication will be necessary as long as his credentials are in the cache (timeout uauth
http://www.cisco.com/pcgi-bin/Support/PSP/psp_view.pl?p=Software:Cisco_Secure_ACS_NT
http://www.cisco.com/pcgi-bin/Support/PSP/psp_view.pl?p=Hardware:PIX
11-09-2001 12:45 AM
ok p.krane
but i have 600 users. therefore I must create 600 user on my ACS and 600 named acl on my pix.
Find answers to your questions by entering keywords or phrases in the Search bar above. New here? Use these resources to familiarize yourself with the community: