Compatibility 802.1X and mac-filter from ACS

Similar Messages

• ICloud does not transfer files, contacts, Pages, etc to my iPad and Mac Computer from my iPhone How can I correct this problem

  icloud suddenly stopped transferring files approximately 48 hours ago and that includes, contacts, Pages, etc to my iPad and Mac Computer from my iPhone How can I correct this problem?  prior to that I had no problems with icloud transfers. what suggestions are there to remedy this problem?.

  On your iPad and iPhone tap Settigs > iCloud
  Switch Documents & Data off then back on. Do the same for Contacts.
  On your Mac open System Preferences > iCloud
  Deselect the box next to Documents & Data, same for Contacts then reselect both boxes then restart your Mac.

• Lenovo Wireless Headset W770 compatibility with Linux and Mac

  Hi,  
  Can someone provide me information on Lenovo Wireless Headset W770 compatibility with Linux and Mac distributions.  On the product overview page under Software Requirements, only Windows is mentioned.  http://support.lenovo.com/en_US/downloads/detail.page?submit=true&componentID=1343112653906&DocID=PD...
  Please let me know if the headset can work with other distributions as well. 
  Thanks & Regards,
  Keya
  Solved!
  Go to Solution.

  I just received W770 and tried it on a PC and it worked. But when I plug the USB receiver in a macbook air (2011 MAC OS 10.6.8), it didn't work. The message I got is that MAC can't recognize the "keyboard" and asked me to press the shift button on the unrecognized keyboard- which I guess meant that the MAC treated the USB dongle as if it were a wireless keyboard of some sort. Anyway, would appreciate it if you could let me know how to make it work on MAC. The previous statement saying that it would work on any Lenovo machine regardless of OS is kinda of unclear - do you mean that it would also work on lenovo running MAC OS (is there any Lenovo running Mac OS?). Thanks.

• Enabling 802.1x and MAC Authentication Bypass on ACS 4.2

  Hi experts,
  I have a few questions regarding 802.1x & MAC Authentication Bypass configured on ACS 4.2.
  i. Is it possible to configure MAC authentication + 802.1x on ACS 4.2 at the same time? Here is the scenario;
  Our company would like to enforce 'double authentication' on each staff machine (include those personal laptop/notebook). Each time the staff plugged into company's network, they will need to supply username & password in order to get access. After that, the ACS server will also check whether the user's MAC address is valid by checking against its own database. This MAC address is tied to the staff's user profile in ACS. If the login information supplied by the staff is valid but the MAC address of their machine is not match in ACS database, then the staff will not be able to gain access unless after notifying the administrator about it.
  ii. If it is possible, any reference that I can check on how to configure this?
  The reason why I need MAC authentication + 802.1x to be configured at ACS as most of our switches are not cisco based and only capable to support 802.1x.
  Hope anyone here could help me on this.
  Thanks very much,
  Daniel

  With ACS, you can setup NARs (or Network Access Restrictions) to permit/deny access based on IP/non-IP based filters (like MAC Addresses).
  Specific info is here:
  <http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_user_guide_chapter09186a008018494f.html#313>
  Hope this helps,

• Wireless Guest Network, iPADS and MAC Filteing

  Hello, I have a question regarding our wireless guest network and using iPADs
  Our wireless network consist of (3) 5508 WLC’s running 6.0.188. 2 internal WLC and 1 external anchor WLC for guest.  Presently we are only using one of the internal controllers for users the second is only used for fail over.  The anchor controller is set up as the DHCP server for guest. We also have a Cisco NAC Guest Server in the DMZ for guest authentication.
  We have (10) iPads that need Internet access though our guest portal. We do not want these iPADs to have to enter any credentials just pass through to the internet. We do not want any other device to be able to connect to this SSID.  Here’s my question; Getting to the Internet is no problem however when I try to set up a MAC filter just for these devices, they never receive an IP address and never get connected.  I have tried setting the filter on both the internal controller and the anchor controller identically and in about every combination I can think of.  Does anyone know how to set up a MAC filter on a guest network configured as per Cisco’s recommendation?  I also plan to use WPA2 and 802.1x once I get the MAC filter to work.  Any help would be appreciated.
  Thank You
  John

  Not all layer 2 and layer 3 security mechanisms are compatible. Refer to this doc
  http://www.cisco.com/en/US/products/ps6366/products_tech_note09186a0080987b7c.shtml#matrix
  What security settings have you configured. The settings also need to be identical on both the internal and anchor controller.

• Urgent 802.1x and MAC-Authentication Problem

  Hi all
  I want to deploy the mac- authentication in my network. and I have 3000 users. In the lab the authenticatoion for the machine takes:
  Vista : 15 - 20 seconds
  XP : 30 - 35 seconds
  Is there any way to reduce this time less than 10 seconds. My users count are 3000 will the time go bigger because of this.
  Please help me.
  Thanks and Best Regards
  amady

  With ACS, you can setup NARs (or Network Access Restrictions) to permit/deny access based on IP/non-IP based filters (like MAC Addresses).
  Specific info is here:
  <http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_user_guide_chapter09186a008018494f.html#313>
  Hope this helps,

• Accessing MBP and Mac Pro from iPhone (back to my mac? VPN?)

  i am running Mountain Lion on the Mac Pro and Mavericks on the MBP and i am wondering if i have options for accessing these computers from my iPhone 5.
  is this Back to My Mac and if so should i be able to access both computers from the iPhone while running this and what should i search for for setup instructions? or is this a utility only for getting back to my MBP running Mavericks from the iPhone or for getting back to my Mac Pro from my MBP? i am a bit confused about all of this.
  also, does VPN get me something that Back to My Mac does not?
  TIA for any help

  Back to My Mac is for connecting from one Mac from another Mac with your iCloud account. iOS is not a Mac, so that isn't a supported feature – tell Apple you want it – http://apple.com/feedback/
  A VPN is not the same as Back to My Mac. A VPN is a way to 'securley connect into a network from the outside' so that you can access your home network whilst away etc. VPN's can be created on computers or some routers. A VPN on a network can potentially allow you access to everything on that local network.
  You should probably read up on what each of them is…
  http://en.wikipedia.org/wiki/Back_to_my_mac
  http://en.wikipedia.org/wiki/Vpn
  You will need to explain what exactly you want to access - e.g. the files on the Mac, or use the UI to control the Mac (as if you were in front of it).
  Apps like Screens can allow you some access to the Mac via iOS http://edovia.com/screens
  You may find is much simpler to store required files in Dropbox & access them on iOS, it really depends on what you hope to access.
  VPN's can be setup with Mac OS X Server, but that is probably not something to run unless you really need it (and have time to learn how to set up correclty - it will require you open up ports on your router which is a real security risk).

• Adobe Creative Suites CS2 file compatibility between PC and MAC

  We produce a 140 page catalog that was created by a third party for us on a MAC with Adobe CS2 using PhotoShope and InDesign.
  I would like to make updates and changes to our catalog file using a PC with Adobe CS2 and send the file back to them for the more complicate work.
  How could I do this? The people that created the catalog don't think it is possible and think it would not work. I know this is probably better suited for Adobe to answer but I wanted to obtain as much information from as many sources as possible.
  Thanks,
  SWFA

  This is entirely possible; however, there are a few things you should be careful/aware of. Fonts are always a crossplatform (and even a cross-computer) issue. Even if you have the same opentype or true type fonts loaded on the PC as the Mac users had, there can be reflow problems which can drive an editor batty.
  If you are just making copy/text revisions and correction, you might consider by InCopy, InDesign's sister copy editing software. That program allows you to open the designers' InDesign file and make adjustments to the text without altering their graphics and layout. From experience, this is very important!
  Until you get that, you can make due opening the Indesign file and making changes. If you get any font subsitution prompts leave the original fonts alone. Things might look wonky, but the designer won't have to lay into the typography after every edit.
  Indesign and Incopy rock. and the world needs to see more cross-platform integration.
  Have fun.
  brandon

• WRT54GSV4 and MAC Filter

  Hello, i'm using WRT54GSV4 with mac filter list. I've used maximum of 40 macs in filter list. Is there any posibilities to expand list? Thanks.

  sorry to step in here, frank.. but I believe you must have misunderstood him... he is not specifically saying that hes blocking wireless MAC adresses... although his wireless router can only support 32 wireless clients maximum, it's too early to say if he is trying to block it. he might have wireless acess points...
  "a helping hand in a community makes the world a universe"

• Firefox is crashing constantly for no apparent reason. Updated Firefox and Mac OS from Tiger to Leopard. Help!

  For the last few days Firefox crashes no matter what I am doing. It has crashed twice while looking at this help page. Mac OS 10.6.7

  The crashes have been fixed today. Starting with this nightly build:
  http://ftp.mozilla.org/pub/mozilla.org/firefox/nightly/2014/06/2014-06-29-08-15-12-mozilla-aurora/
  I would advise you to switch back to the release build of Firefox and not the beta or alpha (Aurora) versions of Firefox.
  I'm a nightly build tester myself and I have a separate release build installed that I can use if I run into problems with the nightly build. If you don't like the idea of having 2 types of the Firefox browser installed, please just install the release version.
  Because having the aurora Firefox as your only browser put you in a very bad situation where you were constantly crashing and frustrating yourself just to sign up on this forum. And I don't recommend the beta or aurora browser to users who just want their browser to work b/c one day they will be finding themselves fighting off mysterious/annoying bugs.
  So please take that suggestion under advisement. :)

• Can I schedule and email reports from ACS 5.1

  I would like to receive a report daily on our TACACS activity on our network devices. I've looked thru the menus and searched some but have not found a clear way to generate such a report. 
  any help is appreciated.

  Working with Scheduled Reports
  In ACS 5.5, you can schedule reports for a future date in such a way that ACS automatically generates the report. This can be done using the scheduled reports feature available in the Monitoring and Reports web interface. This feature is available only for the for RADIUS authentication, RADIUS accounting, TACACS+ authentication, TACACS+ authorization, and TACACS+ accounting reports. ACS generates the scheduled reports based on the given time range, exports them to a .csv file, and stores them in the specified remote repository.
  Previous releases of ACS allowed you to export reports and copy the .csv file to the local file system. You need to copy the exported file using the copy command to a remote location. But in ACS 5.5, you have the option to configure the remote repository to which the generated reports are exported and stored.
  An email notification is sent whenever a scheduled report is generated successfully. The email notification contains the following information:
  Scheduled Report Name—Name of the scheduled report.
  Cause—The reason for which you have received this email or alarm notification. In this case, the notification is a scheduled report alarm.
  Details—The details of the email notification.
  Repository Name—Name of the remote repository where the generated reports are stored.
  Repository URL—URL of the remote repository.
  File Name—Name of the generated report. The format of the filename is <Name of the Scheduled Report>-<Report Type>. For instance, if the name of the scheduled report is “report1” and the report type is RADIUS_Accounting, then the filename is displayed as: report1-RADIUS_Accounting.csv
  Generated on—The date and time at which the report is generated.
  ACS does not generate any alarms or email notifications if a scheduled report generation fails. To know the status of the scheduled reports, go to the Monitoring Configuration > System Operations > Scheduler page and check for the status.
  http://www.cisco.com/c/en/us/td/docs/net_mgmt/cisco_secure_access_control_system/5-5/user/guide/acsuserguide/viewer_reporting.html

• Need help with RE1000 and mac filter

  Im really happy with the range expander so far but when it comes to mac filtering it doesnt work, i mean, when i able de mac filtering on my  E4200_V2 the range expander works nor more as before, why? any reason? does my RE does not support mac filtering?
  thanks

  First, for MAC filtering please ensure that you have put in the correct MAC address in your router for RE1000.Since the settings on the RE1000 is important to verify and retrieve the wireless settings of your wireless router to match:
  •    Wireless Network Name (SSID)
  •    Wireless Channel
  •    Wireless Security Mode (WPA/WPA2 Personal or WEP)
  •    Network Key or Passphrase
  Here is the link for the configuration of the RE1000: http://www6.nohold.net/Cisco2/ukp.aspx?pid=93&login=1&vw=1&app=search&articleid=22045&userrole=Links...

• E4200: guest networking and MAC filter

  Hi there,
  I have my e4200 setup with guest networking enabled and also MAC filtering. Somehow i was epxecting MAC filtering not to be applied to guest wireless network but it appears to be so.
  Can anybody please confirm if this is the case and if there's a workaround?
  Solved!
  Go to Solution.

  You are correct.  MAC filtering is universal in the router. There is no workaround besides not using it.

• Best format for external HDD for compatibility with Windows and Mac?

  I have a couple of USB HDDs formatted as MS-DOS (FAT32)  which I use on both my iMac and Toshiba laptop  . 
  This week I discovered that I could have used  exFAT  which would have avoided the 4GB file limitation.
  Apart from this, are there any other pros or cons associated with  exFAT  and would it be advisable to use this formatting in future?

  I am cross using extern HDD and USB Stick's. Win7 64 and OSX 10.9. I had the best results when i format the drive with OSX (best cluster size by automatic). I am using small 16GB USB Stick's and large 2TB HDD.
  Some Windows Programs does not work if they are not installed on NTFS and you also have no security on both systems in filesystem because exFat has no security. Could be also a bad idea to use a exFat drive for iPhoto Library but not tested.
  I use exFat for Data like Music, Pictures, and Movies. To share home made things with friends and family.
  If you use "active" Files like programs or databases use the "OS Native" filesystem, you have less problems :-)

• WLC Flexconnect with AAA and MAC authentication

  hi,
  i am having cisco WLC with 7.4.121 version and i am having remote side access points to be connected to this controller and remote access point will have different vlan on the remote side itself.
  my question is i am having  Radius authentication for the clients who are all connecting from all the access points and MAC filtering also.
  My radius server is placed in the HQ where we have WLC. which method of flexconnect switchign will give be both AAA and MAc filter options to be working.
  one more question,
  is it possible to make each AP seperate MAC filters On the WLC.
  thanks
  cyril

  If you are planning on doing machine authentication i.e authentication of machine with username password by the AAA server at then this is possible using flexconnect local switching enabled provided you have your AAA server accessible via the local VLAN at the remote site.
  In case you are planning on doing mac-filtering using WLC and username/password authentication using AAA server then this cannot be achieved when you enable Flexconnect local switching as you do not get an option to configure the mac-filtering on Flex-connect groups.Hence you would need to use central authentication.
  Actually the best option for you is that you either deploy a local site AAA server and do both the authentications via your radius server or use Central authentication with Flexconnect APs incase this is not feasible.
  Hope this clears you doubts!!!
  Note: Please do not forget to rate and accept as solution incase the post is valid.