Does ISE 1.1 support TACACS and H-REAP?

Similar Messages

• HT4623 I have the original iPad, it does not seem to support ios6 and will no longer connect to iTunes WHY is this

  I have the oringinal ipad, it does not seem to support ios6 and will not connect to itunes, WHY is this?

  Start here... http://www.apple.com/support/iphone/assistant/itunes/

• Does ONS 15454 SDH supports TACACS+ ?

  Hi,
  We are currently managing 16 ONS nodes in our customer environment and we need to implement AAA using TACACS+ to those ONS chasis.
  We are currently using default Superuser account, and we could only find support document related to RADIUS but not for TACACS+.
  Does anyone have implemented authendication on ONS15454 SDH with TACACS+ and do let me know how to implement it ? If not, does we have any Cisco document to clarify why it is not supported ?
  Thanga

  Thanga,
  AAA is not supported but RADIUS is.  Use DLP-A456 (Configure the Node for TADIUS Authentication) to set up the ONS 15454 to use Radius.  It is in the Procedure Guide for the ONS 15454.
  If you have any problems please call 800-553-2447 to open a TAC case.
  Here is the link:
  http://www.cisco.com/en/US/partner/docs/optical/15000r9_1/15454/sonet/procedure/guide/454a91_dlp4.html#wpxref25074
  Thanks
  Mike Dooley - Customer Support Engineer
  Cisco Heartland TAC

• Does iPlanet proxy3.6 support dayofweek and timeofday in ACLs

  I tried using dayofweek and timeof day in ACLs so as to allow some users access to Internet during particular time of a day. But when I start the proxy server I get an error stating syntax is not proper. Can anyone tell me if these can be used in ACLs for proxy server. I tried adding the ACLs to generated*.acl. If these can be used can anyone let me know the proper syntax and also if I have to create a separate acl and refer to it in magnus.conf?
  OS Solaris7
  Proxy: iPlanet Web Proxy Server 3.6

  Hi,
  NES3.6 is supported under WLS6.0. Could you please put the part of obj.conf
  file to proxy request here?
  Thanks
  Yu Tian
  "Benjamin Hyatt" <[email protected]> wrote in message
  news:[email protected]..
  >
  Having a problem getting libproxy to function properly on nes 3.6
  Added the proper entries for the plugin in obj.conf; reloaded.
  Nes instance starts up fine. If I attempt to access the url (i've definedby
  ppath) the app server never get's hit. It's as if the plugin is beingcompletely
  ignored.
  I've set Debug="ON" hoping to see wlproxy.log in /tmp.... nothing.
  I've done this very easily before with wl 5.1.0 and iplanet.
  Does the 6.0 sp2 proxy plugin support nes 3.6?
  Platform
  Solaris 2.6
  Any info is greatly appreciated.
  Thanks,
  /Ben

• Does DI 11.7 support exists and non exist in where statment in dataflow

  Hi All
  Does DI support the exists and not exists iin a dataflow. I am getting and error when using it.
  Thanks

  details and options to be found here: https://boc.sdn.sap.com/node/20046

• Does mak book pro support voice and vedio chat on yahoo messenger with windows yahoo messenger on the other line?

  dear All,
  i am planing to buy Makboocpro 13. but befor muying the mac i need to make sure that it is support the voice and vedio chat on yahoo messenger with another windows yahoo messenger user.
  that is very importabt to me cause if not i won't but it
  appreciate your feed back
  thanks
  Hamed Nofal
  [email protected]

  Hi Joseph,
  I have 2011 Mac Book Pro 13 and I have Yahoo 3.0.1 Beta version of Messenger. I am not able to chat with my friends, who are using Windows OS. As a matter of fact, I tried to view my cam on yahoo but somehow it says, "permission denied"!!
  Any configuration issue?
  Your help is appreciated.
  Thank you.

• Does the new browser support norton and roboform auto password fill-ins?

  can u use the norton and roboform automatic password fill-ins in the updated 8.01 firefox browser?

  Norton is compatible with Firefox 8 if you have applied the current Norton updates.
  #How to update Norton and
  #things to check during Firefox 8 install are included in the following
  #Norton 360 --> http://community.norton.com/t5/Norton-360/Firefox-8-Support-for-Norton-Toolbar/td-p/581640
  #NIS --> http://community.norton.com/t5/Norton-Internet-Security-Norton/Firefox-8-Support-for-Norton-Toolbar/td-p/581516
  #Also see --> https://support.mozilla.com/en-US/kb/Add-ons%20are%20disabled%20after%20updating%20Firefox
  Roboform is compatible with Firefox 8 if you have updated Roboform to at least version 7.6.2
  #See --> https://addons.mozilla.org/en-US/firefox/blocked/i45
  #Update to Roboform '''''<u>7.6.4</u>''''': http://www.roboform.com/support/news
  #Roboform download link: http://www.roboform.com/platforms/browsers/firefox
  #'''''Also see''''' --> https://support.mozilla.com/en-US/kb/Add-ons%20are%20disabled%20after%20updating%20Firefox
  '''If this reply solves your problem, please click "Solved It" next to this reply when <u>signed-in</u> to the forum.'''
  Not related to your question, but...
  You may need to update some plug-ins. Check your plug-ins and update as necessary:
  *Plug-in check --> http://www.mozilla.org/en-US/plugincheck/
  *Adobe Shockwave for Director Netscape plug-in: [https://support.mozilla.com/en-US/kb/Using%20the%20Shockwave%20plugin%20with%20Firefox#w_installing-shockwave Installing ('''''or Updating''''') the Shockwave plugin with Firefox]
  *'''''Adobe PDF Plug-In For Firefox and Netscape''''': [https://support.mozilla.com/en-US/kb/Using%20the%20Adobe%20Reader%20plugin%20with%20Firefox#w_installing-and-updating-adobe-reader Installing/Updating Adobe Reader in Firefox]
  *'''''Shockwave Flash''''' (Adobe Flash or Flash): [https://support.mozilla.com/en-US/kb/Managing%20the%20Flash%20plugin#w_updating-flash Updating Flash in Firefox]
  *Next Generation Java Plug-in for Mozilla browsers: [https://support.mozilla.com/en-US/kb/Using%20the%20Java%20plugin%20with%20Firefox#w_installing-or-updating-java Installing or Updating Java in Firefox]

• Does the MBA 2012 support SDHC and SDXC Cards ?

  In the store only SD-cards are mentioned in the tech-specs for the MBA.
  In comparison to that : The specs for the MBP are talking about SDXC-card reader.
  Thx for your answers
  regds
  Mirco

  The MBair supports SDXC cards at least back to 2011.  It's not mentioned in the store but is mentioned in the user manual.
  From the 2011 user manual:

• Does Satellite M50 PSM51E supports infrared and BT?

  Hello,
  I wanted to set up my laptop new and saw that there are infrared and bluetooth drivers installed and also available to download for my laptop model.
  I never used it because i did not have any device with Bluetooth or IR.
  Now my question is how can I find out if my Laptop really has this features or not?
  Thanks for helping

  HI,
  Thanks for the quick answer. It is a M50 - 181.
  I searched for a bluetooth symbol but did not see anything. how should it look like. (is it possible to ad pictures here?)
  In the device manager and in the control panel bluetooth is shown, but if I start the bluetooth in the control panel it only shows device not ready. Now I am wondering if there is something like a standard installation from toshiba where this software is installed no matter if the hardware exists or not?!?
  There is also nothing shown in the windows explorer.

• Cisco 300 support TACACS+ authorization and accounting

  Hi All,
  Can someone please confirm that does Cisco 300 switch supports tacacs authorization and accounting ? or just authentication ?
  Kindly guide

  Hello
  Please review this - Cisco 300
  res
  Paul

• Does Weblogic server 8.1 support "LIMIT and OFFSET" in EJB QL?

  hi,
  Can any one tell me does 8.1 server support "limit" and "offset" keywords in EJB-QL?
  I tried to define a finder method in the workshop with the following syntax:
  @ejbgen:finder ejb-ql="SELECT OBJECT(o) from EmpBean OFFSET ?1 LIMIT ?2" generate-on="Local" signature="Collection findEmp(java.lang.Integer st,java.lang.Integer en)"
  I get the following error
  ERROR: ERROR: Error from ejbc: [EJB:011017]Error while reading 'META-INF/weblogic-cmp-rdbms-jar.xml'. The error was:
  ERROR: Query:
       EJB Name: EmpBean
       Method Name: findEmp
       Parameter Types: (java.lang.Integer, java.lang.Integer)
  SELECT OBJECT(o) from EmpBean OFFSET =>> 1 <<= LIMIT 2
  EJB QL Parser Error.
  39: unexpected token: 1
  What am I doing wrong?
  thanks

  <p>I could not find any documentation that suggested LIMIT or OFFSET where supported. Some of our developers needed to use limit, in the end all I could suggest was using a dynamic query and setting the maximum number of results see here
  .</p>
  <p>
  Hussein Badakhchani</br>
  </p>

• Does my Linksys E2000 support VDSL2?

  My dutch ISP (Online) has sent us a new modem/router, a HUAWEI HG655d Home Gateway. I want to bridge it and and carry on using my existing Linksys E2000 router to manage the traffic on my home network.
  I've been having problems setting this up and someone has suggested that perhaps it's because the E2000 doesn't support VDSL2.
  Can anyone please clear this up for me?
  I've also attached a screenshot of the WAN settings page for the new HUAWEI modem/router. Why are there 2 seemingly identical ADSL2+ connections listed, and also 2 seemingly identical VDSL2 connections, all enabled? Can I switch between them at will? If the E2000 doesn't support VDSL2 can I simply choose to use, say, ADSL2+, does the Linksys E2000 support ADSL2+ and what difference would that make? Or is VDSL2 pre-ordained by my ISP and unchangeable?
  I'm not too smart about all this stuff, but I really need to sort this out. The kids are getting restless, they'll be coming for me soon, and I've only got so many bullets... ;-)
  Thanks in advance
  Al

  teaforthreeorfour wrote:
  Hi again; one of our cats is called Shadster, it's like I'm getting IT advice from our cat lol...
  Thanks, I'll run through it all again but try manually setting those IP addresses on the Linksys, and get back to you :-)
  Please remember to Kudo those that help you.
  Linksys
  Communities Technical Support

• Does Qosmio X300-13O support quad-core?

  Well title says it all; does the X300-13O support quad and is it at all possible to upgrade the CPU?
  Found this CPU which uses the same socket as the current CPU.
  http://bit.ly/iqVZim (I know it is QS)
  Regards
  Alex

  >Does the X300-13O support quad and is it at all possible to upgrade the CPU?
  This depends on the chipset and BIOS.
  The notebook supports the Mobile Intel(R) PM45 Express Chipset.
  Check this Intel page:
  http://www.intel.com/products/notebook/chipsets/pm45/pm45-overview.htm
  Here you can see that only *Intel Core2 Duo* processor is supported

• Does Cisco ISE 1.2 support Catalyst SRW224G4P and Small business ESW520 Switches?

  Hello all,
  Does Cisco ISE 1.2 support Catalyst SRW224G4P and Small business ESW520 Switches?
  Best regards.

  Hi there, the link below outlines the ISE supported Cisco hardware:
  http://www.cisco.com/c/en/us/td/docs/security/ise/1-3/compatibility/ise_sdt.html
  Thank you for rating helpful posts!

• Cisco ISE with TACACS+ and RADIUS both?

  Hello,
  I am initiating wired authentication on an existing network using Cisco ISE. I have been studying the requirements for this. I know I have to turn on RADIUS on the Cisco switches on the network. The switches on the network are already programmed for TACACS+. Does anybody know if they can both operate on the same network at the same time?
  Bob

  Hello Robert,
  I believe NO, they both won't work together as both TACACS and Radius are different technologies.
  It's just because that TACACS encrypts the whole message and Radius just the password, so I believe it won't work.
  For your reference, I am sharing the link for the difference between TACACS and Radius.
  http://www.cisco.com/en/US/tech/tk59/technologies_tech_note09186a0080094e99.shtml
  Moreover, Please review the information as well.
  Compare TACACS+ and RADIUS
  These sections compare several features of TACACS+ and RADIUS.
  UDP and TCP
  RADIUS uses UDP while TACACS+ uses TCP. TCP offers several advantages over UDP. TCP offers a connection-oriented transport, while UDP offers best-effort delivery. RADIUS requires additional programmable variables such as re-transmit attempts and time-outs to compensate for best-effort transport, but it lacks the level of built-in support that a
  TCP transport offers:
  TCP usage provides a separate acknowledgment that a request has been received, within (approximately) a network round-trip time (RTT), regardless of how loaded and slow the backend authentication mechanism (a TCP acknowledgment) might be.
  TCP provides immediate indication of a crashed, or not running, server by a reset (RST). You can determine when a server crashes and returns to service if you use long-lived TCP connections. UDP cannot tell the difference between a server that is down, a slow server, and a non-existent server.
  Using TCP keepalives, server crashes can be detected out-of-band with actual requests. Connections to multiple servers can be maintained simultaneously, and you only need to send messages to the ones that are known to be up and running.
  TCP is more scalable and adapts to growing, as well as congested, networks.
  Packet Encryption
  RADIUS encrypts only the password in the access-request packet, from the client to the server. The remainder of the packet is unencrypted. Other information, such as username, authorized services, and accounting, can be captured by a third party.
  TACACS+ encrypts the entire body of the packet but leaves a standard TACACS+ header. Within the header is a field that indicates whether the body is encrypted or not. For debugging purposes, it is useful to have the body of the packets unencrypted. However, during normal operation, the body of the packet is fully encrypted for more secure communications.
  Authentication and Authorization
  RADIUS combines authentication and authorization. The access-accept packets sent by the RADIUS server to the client contain authorization information. This makes it difficult to decouple authentication and authorization.
  TACACS+ uses the AAA architecture, which separates AAA. This allows separate authentication solutions that can still use TACACS+ for authorization and accounting. For example, with TACACS+, it is possible to use Kerberos authentication and TACACS+ authorization and accounting. After a NAS authenticates on a Kerberos server, it requests authorization information from a TACACS+ server without having to re-authenticate. The NAS informs the TACACS+ server that it has successfully authenticated on a Kerberos server, and the server then provides authorization information.
  During a session, if additional authorization checking is needed, the access server checks with a TACACS+ server to determine if the user is granted permission to use a particular command. This provides greater control over the commands that can be executed on the access server while decoupling from the authentication mechanism.
  Multiprotocol Support
  RADIUS does not support these protocols:
  AppleTalk Remote Access (ARA) protocol
  NetBIOS Frame Protocol Control protocol
  Novell Asynchronous Services Interface (NASI)
  X.25 PAD connection
  TACACS+ offers multiprotocol support.
  Router Management
  RADIUS does not allow users to control which commands can be executed on a router and which cannot. Therefore, RADIUS is not as useful for router management or as flexible for terminal services.
  TACACS+ provides two methods to control the authorization of router commands on a per-user or per-group basis. The first method is to assign privilege levels to commands and have the router verify with the TACACS+ server whether or not the user is authorized at the specified privilege level. The second method is to explicitly specify in the TACACS+ server, on a per-user or per-group basis, the commands that are allowed.
  Interoperability
  Due to various interpretations of the RADIUS Request for Comments (RFCs), compliance with the RADIUS RFCs does not guarantee interoperability. Even though several vendors implement RADIUS clients, this does not mean they are interoperable. Cisco implements most RADIUS attributes and consistently adds more. If customers use only the standard RADIUS attributes in their servers, they can interoperate between several vendors as long as these vendors implement the same attributes. However, many vendors implement extensions that are proprietary attributes. If a customer uses one of these vendor-specific extended attributes, interoperability is not possible.
  Traffic
  Due to the previously cited differences between TACACS+ and RADIUS, the amount of traffic generated between the client and server differs. These examples illustrate the traffic between the client and server for TACACS+ and RADIUS when used for router management with authentication, exec authorization, command authorization (which RADIUS cannot do), exec accounting, and command accounting (which RADIUS cannot do).