IP Pool with ACS 4.1

Hello,
Description:
- I have an ACSv4.1
- I have 2xNAS configured on ACS as RADIUS IETF
- I have definet IP Poll under System conf -> IP pool Server (start Address & End adress)
- On the Group setup I defined IP-assignement -> Assigned from AAA Server pool -> MyPool1
Problem:
The client get an IP address from the ip poll defined but doing ipconfig on the WINClient the subnet mask is randomly assigned (sometime 255.255.255.240 sometime 255.255.255.255.0)
The client get a DNS that is not specified in the IP Pool ! :-() ..
Quetions
Since in the IP Poll is only defined start address and end address (i.e:10.47.110.32-10.47.110.40)
Why client get random subnet mask, it should be 255.255.255.255 isn't ?
Why there is no definition for Gateway ? Which value gets ?
Clinets get also DNS, Where does this value get from ?
I wuold like also to have the possibility to assign IP from IP poll based on the NAs that relay the AAA request, is that possible ?

You may try the bug ID CSCse33323

Similar Messages

VPDN - L2TP Tunneling with IP pool on ACS 4.2

Hi all,
We have below scenario :
Scenario 1 :
I have implemented L2TP tunneling with authentication using radius and ip address assignment using local pool on AAA client devices.
"2 client initiates L2tp tunneling using the same username , and both of the clients succesfully logged in and the router (AAA client) gave them 2 different ip address assignment."
Scenario 2
I have implemented L2TP tunneling with authentication using radius and ip address assignment using IP Pool on ACS 4.2.
"2 client initiates L2tp tunneling using the same username , and both of the clients succesfully logged in and the ACS gave them 2 same ip address assignment."
Question : Can we got the different ip address assignment with scenario 2 ? Please advice,,
Best Regards,
Rian

can we see your config please?

Configuring JCo3 Connection Pool with single sign on on non SAP Java server

Hi Everyone,
i have configured a connection pool on JBoss as per JCo3 Documentation and is working great.
Now I need help to configure this connection pool with single sign on so that RFc on SAP ECC systems are executed using end users credential rather than using single user name password used to configure JCo connection pool.
On SAP Java stack I am sure its possible within Java WebDynpro and i assume using JCA resource adapter. But what if we don't want to use SAP Java App server.
Any help will be appreciated.
Thanks,
Divyakumar Jain

Eason, 你好！
I have exactly the same problem. Did you find a solution to this problem? If so, please let me know!

Using Multiple AD domains with ACS

Hi,
Is it possible to use multiple domains for authentication with ACS? I need to use AAA to authenticate remote users into a centralised location but the users will be from different domains and I was hoping to use a single applicance to cater for all domains. Can this be achieved using LDAP? I understand that ACS can only be part of one AD domain.....
In essence I am hoping that I will be able to authenticate the user based on their domain\credentials.
Thanks in advance
Jason

Hi Javier,
I understand that ACS can only join a single AD domain - but can it use LDAP to authenticate users from different AD domains - I don't want to have to established trusts between different domains.
Kind regards
Jason

Connection pooling with SQL Server 2008 and Tomcat 6.0

Hello Everybody,
I'm creating a web application using struts 2.0 , tomcat 6.0 and sql server 2008.
Everything works fine but i'm unable to create connection pooling with sql server 2008.Please help me to solve this issue.
Code for this is as foolows:
in my META-INF/context.xml
<?xml version="1.0" encoding="UTF-8"?>
<Context path="/spas" docBase="spas"
debug="5" reloadable="true" crossContext="true">
<Resource
name="jdbc/spas_new"
auth="Container"
type="javax.sql.DataSource"
maxActive="20"
maxIdle="10"
maxWait="-1"
user="spas_user"
password="spas123"
driverClassName="com.microsoft.sqlserver.jdbc.SQLServerDriver"
url="jdbc:sqlserver://HGL-0053\dbo:1433;databaseName=spas_new;responseBuffering=adaptive;"/>
</Context>
in my web.xml
<resource-ref>
<description>SQL Server Datasource</description>
<res-ref-name>jdbc/spas_new</res-ref-name>
<res-type>javax.sql.DataSource</res-type>
<res-auth>Container</res-auth>
</resource-ref>
and in my ConnectionThread.java file i've used:
Context ctx = new InitialContext();
if(ctx == null )
throw new Exception("Sorry! No Context Exception");
DataSource ds = (DataSource)ctx.lookup("java:/comp/env/jdbc/spas_new");
System.out.println("ds:"+ds);
conn=ds.getConnection();
Following is the exception:
org.apache.tomcat.dbcp.dbcp.SQLNestedException: Cannot create PoolableConnectionFactory (Login failed for user ''.)
at org.apache.tomcat.dbcp.dbcp.BasicDataSource.createDataSource(BasicDataSource.java:1225)
at org.apache.tomcat.dbcp.dbcp.BasicDataSource.getConnection(BasicDataSource.java:880)
at login.V_SPAS_ConnectionThread.getConnection(V_SPAS_ConnectionThread.java:87)
at org.apache.jsp.login.v_005fspas_005flogin_005fpage_jsp._jspService(v_005fspas_005flogin_005fpage_jsp.java:95)
at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:374)
at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:337)
at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:266)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:630)
at org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:436)
at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:374)
at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:302)
at org.apache.struts.action.RequestProcessor.doForward(RequestProcessor.java:1085)
at org.apache.struts.tiles.TilesRequestProcessor.doForward(TilesRequestProcessor.java:263)
at org.apache.struts.action.RequestProcessor.internalModuleRelativeForward(RequestProcessor.java:1023)
at org.apache.struts.tiles.TilesRequestProcessor.internalModuleRelativeForward(TilesRequestProcessor.java:345)
at org.apache.struts.action.RequestProcessor.processForward(RequestProcessor.java:572)
at org.apache.struts.action.RequestProcessor.process(RequestProcessor.java:221)
at org.apache.struts.action.ActionServlet.process(ActionServlet.java:1196)
at org.apache.struts.action.ActionServlet.doGet(ActionServlet.java:414)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:690)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.apache.catalina.core.ApplicationDispatcher.invoke(ApplicationDispatcher.java:630)
at org.apache.catalina.core.ApplicationDispatcher.processRequest(ApplicationDispatcher.java:436)
at org.apache.catalina.core.ApplicationDispatcher.doForward(ApplicationDispatcher.java:374)
at org.apache.catalina.core.ApplicationDispatcher.forward(ApplicationDispatcher.java:302)
at org.apache.jasper.runtime.PageContextImpl.doForward(PageContextImpl.java:694)
at org.apache.jasper.runtime.PageContextImpl.forward(PageContextImpl.java:665)
at org.apache.jsp.index_jsp._jspService(index_jsp.java:54)
at org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:70)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
at org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:374)
at org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:337)
at org.apache.jasper.servlet.JspServlet.service(JspServlet.java:266)
at javax.servlet.http.HttpServlet.service(HttpServlet.java:803)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:290)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at login.V_SPAS_SecurityCheckFilter.doFilter(V_SPAS_SecurityCheckFilter.java:108)
at org.apache.catalina.core.ApplicationFilterChain.internalDoFilter(ApplicationFilterChain.java:235)
at org.apache.catalina.core.ApplicationFilterChain.doFilter(ApplicationFilterChain.java:206)
at org.apache.catalina.core.StandardWrapperValve.invoke(StandardWrapperValve.java:233)
at org.apache.catalina.core.StandardContextValve.invoke(StandardContextValve.java:175)
at org.apache.catalina.core.StandardHostValve.invoke(StandardHostValve.java:128)
at org.apache.catalina.valves.ErrorReportValve.invoke(ErrorReportValve.java:102)
at org.apache.catalina.core.StandardEngineValve.invoke(StandardEngineValve.java:109)
at org.apache.catalina.connector.CoyoteAdapter.service(CoyoteAdapter.java:286)
at org.apache.coyote.http11.Http11Processor.process(Http11Processor.java:844)
at org.apache.coyote.http11.Http11Protocol$Http11ConnectionHandler.process(Http11Protocol.java:583)
at org.apache.tomcat.util.net.JIoEndpoint$Worker.run(JIoEndpoint.java:447)
at java.lang.Thread.run(Thread.java:619)
Caused by: com.microsoft.sqlserver.jdbc.SQLServerException: Login failed for user ''.

Hi Karthikeyan,
This is not the issue at all. I can open the management studio by the same login id and password and also i can make the database jdbc connection from plain java file.
It does not give me any problem by them.
I'm unable to find the actual problem. May be i'm missing something in connection pooling.
Please help.
Regards
Mina

How to make a question pool with MANY questions?

I would like to make a question pool
with several thousand questions, which I currently have in an
Excel file. Is there a way around having manually to enter all
questions in a Captivate question pool?
Thanks.

I would use the XML function from Captivate 4.
- Make yourself a test quiz with two slides, one being a multiple choice.
- Export it to XML
- Open the XML File in Excel
Good point to start with is ns1:g and ns1:Source26.
Most likely you can get all your question into captivate that way.
Mr_TD

How-To Create OVM 2.2.2 Single Pool with Non HA, Single Server

How to create OVM2.2.2 Server Pool with a Single, Non-HA configuration.
- Install OVM2.2.2 on target Server: [ovs222a, ip=192.168.0.207]
(Default install creates ocfs2 file system on /dev/sda3 on my machine, YMMV).
- Install OVMM2.2.0 or later on another server or VM
- Remove existing OCFS2 filesystem and repository from [ovs222a] server
- logon to [ovs222a] as root
# cd /opt/ovs-agent-latest/utils
# ./repos.py -l (shows uuid)
# ./repos.py -d [uuid]
- Recreate the ocfs2 file system
# mkfs.ocfs2 -N 8 -T datafiles /dev/sda3
- Create a new repository on the ocfs2 file system and make it root
# ./repos.py -n /dev/sda3
# ./repos.py -r /dev/sda3
# ./repos.py -l (should show new repository uuid with [R] designation)
- Edit cluster.conf, ensure only 1 node with ip addr: 192.168.0.207
# vi /etc/ocfs2/cluster.conf
- Edit /etc/hosts, ensure ovs222a ip addr = 192.168.0.207, not 127.0.0.1
(/etc/hosts should look like the following
127.0.0.1 localhost localhost.local.domain
192.168.0.207 ovs222a ovs222a.[your.actual.domain.name]
- Configure o2cb service, take the defaults which will start o2cb service on boot
# service o2cb configure
# service o2cb start
# service 02cb status
- Using OVMM2.2.0 GUI, create Server Pool
- Server Pool Name: [ovm2pool1]
- LEAVE SERVER POOL IP ADDRESS [BLANK], NOT NEEDED FOR SINGLE SERVER SERVER POOL
- LEAVE HIGH AVAILABILITY MODE ENABLE [UNCHECKED] (HA not available in single server cluster pool).
- Set [ovs222a], [192.168.0.207] as Server Pool: MASTER, UTILITY, VM SERVER with correct passwords.
- Test connection to [ovs222a]
- Create Pool

Hi
ThanQ For Reply Saurabh,
So Now I have to create one logon.jsp this jsp having username and password.
For Example http://sapmjd:50000/scw/logon.jsp
when i will pass the URLu2019s that time I am able to See logon Page. This .jsp is normal logon jsp looks like client logongape( logos, all available) By using this jsp how we will connect main URL i.e (irj/portal)
in logon.jsp I will pass UID and PWD that time I am logon into the Portal,
Could you tell me these Answes.
1. Is it possible to Connect main URL i.e (irj/portal) or customize par file having one jsp is there i.e jsp name umLogonPage.jsp. is it possible when I will pass the uid and pwd in logon.jsp this jsp will connect to the jsp umLogonPage.jsp.
2. If you says Answer YES How we will connect.
Regards
Vijay Kalluri

LMS 3.2 integration with ACS 5.1

Hi
Is it
/* Style Definitions */
table.MsoNormalTable
{mso-style-name:"Table Normal";
mso-tstyle-rowband-size:0;
mso-tstyle-colband-size:0;
mso-style-noshow:yes;
mso-style-priority:99;
mso-style-qformat:yes;
mso-style-parent:"";
mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
mso-para-margin-top:0cm;
mso-para-margin-right:0cm;
mso-para-margin-bottom:10.0pt;
mso-para-margin-left:0cm;
line-height:115%;
mso-pagination:widow-orphan;
font-size:11.0pt;
font-family:"Calibri","sans-serif";
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;
mso-fareast-language:EN-US;}
possible to integrate LMS 3.2 with ACS 5.1? I know it works with ACS 4.X, but I can't get it to work with ACS 5.1.
Here is a link to how to do it with ACS 4.X:
http://www.cisco.com/en/US/prod/collateral/netmgtsw/ps6504/ps6528/ps2425/prod_white_paper0900aecd80613f62.html
Regards
Reidar

/* Style Definitions */
table.MsoNormalTable
{mso-style-name:"Table Normal";
mso-tstyle-rowband-size:0;
mso-tstyle-colband-size:0;
mso-style-noshow:yes;
mso-style-priority:99;
mso-style-qformat:yes;
mso-style-parent:"";
mso-padding-alt:0cm 5.4pt 0cm 5.4pt;
mso-para-margin-top:0cm;
mso-para-margin-right:0cm;
mso-para-margin-bottom:10.0pt;
mso-para-margin-left:0cm;
line-height:115%;
mso-pagination:widow-orphan;
font-size:11.0pt;
font-family:"Calibri","sans-serif";
mso-ascii-font-family:Calibri;
mso-ascii-theme-font:minor-latin;
mso-fareast-font-family:"Times New Roman";
mso-fareast-theme-font:minor-fareast;
mso-hansi-font-family:Calibri;
mso-hansi-theme-font:minor-latin;
mso-bidi-font-family:"Times New Roman";
mso-bidi-theme-font:minor-bidi;}
Thanks Reidar.... hmm very strange. I really wish an expert would respond to this thread as it will help a lot of people who might be planning to deploy these versions and they can help put this matter to rest once and for all. Not sure why LMS 3.2 will not support ACS 5.1 and it might help to know when it will (updates etc). Kindly let me know if you get any further information. My deployment is so large that setting a local username and password on all the devices is not an option unfortunately .......

Adding drives to storage pool with same unique id

i have seen a lot of discussion about using storage pools with raid controllers that reporting the same unique id across multiple drives.
I am yet to find a solution to my problem is that i can't add 2 drives to storage pool because they share the same unique id. Is there a way i can get around this?
Thanks brendon

Thanks for your reply,
However, Storage spaces uses the uniqueid that the raid / sata controller reports for the drive. in my case this is the output from powershell
PS C:\Users\tfs> get-physicaldisk | ft FriendlyName, uniqueid
FriendlyName uniqueid
PhysicalDisk1 2039374232333633
PhysicalDisk2 2039374232333633
PhysicalDisk10 SCSI\Disk&Ven_Hitachi&Prod_HDS722020ALA330\4&37df755d&0&...
PhysicalDisk8 SCSI\Disk&Ven_WDC&Prod_WD10EACS-00D6B0\4&37df755d&0&0300...
PhysicalDisk6 SCSI\Disk&Ven_WDC&Prod_WD10EADS-00M2B0\4&37df755d&0&0100...
PhysicalDisk7 SCSI\Disk&Ven_&Prod_ST2000DL003-9VT1\4&37df755d&0&020000...
PhysicalDisk0 2039374232333633
PhysicalDisk4 SCSI\Disk&Ven_&Prod_ST3000DM001-9YN1\5&10a0425f&0&010000...
PhysicalDisk3 SCSI\Disk&Ven_Hitachi&Prod_HDS723030ALA640\5&10a0425f&0&...
PhysicalDisk9 SCSI\Disk&Ven_&Prod_ST31500341AS\4&37df755d&0&040000:sho...
PhysicalDisk5 SCSI\Disk&Ven_WDC&Prod_WD1001FALS-00J7B\4&37df755d&0&000...
as you notice i have 3 drives with the same uniqueid. This i cannot change and this is what i am looking for a workaround for.
If you have any thoughts that would be great.
Thanks in advance
Brendon

Dynamic Vlan Assigment on 2950 with acs 4.2

Hello to everyone
We have a problem with Cisco 2950G 48 EI and ACS (version 4.2) providing dynamic Vlan assignment based on groups
On the ACS we configured the following attributes for the specific group
64 = VLAN
65 = 802
81 = VLAN Name
We tried for the 81 attribute both Vlan name and Vlan ID but we get the same results
In detail, we need the machine to be placed on Vlan ID 6 named vlan_sio so we inserted these value in the attribute field
Before we configured the switch to speak with ACS:
aaa new-model
aaa group server radius Switch
                               server 172.16.0.93 auth-port 1812 acct-port 1813
dot1x system-auth-control
                radius-server host 172.16.0.93 auth-port 1812 acct-port 1813 key xxxxxx
radius-server retransmit 3
Configured the ports for the use of dot1.x.
switchport mode access
               dot1x port-control auto
               dot1x guest-vlan 7
               spanning-tree portfast
The users are correctly authenticated but the ports are always connected to the default Vlan of the ports
We tried to debug with the debug dot1.x events command and we get the following errors:
Feb 16 12:00:04.017:         Attribute 64 6 0100000D
Feb 16 12:00:04.017:         Attribute 65 6 01000006
Feb 16 12:00:04.017:         Attribute 81 4 01360806
Feb 16 12:00:04.025: dot1x-ev:Received VLAN is No Vlan
Feb 16 12:00:04.037: dot1x-ev:Received VLAN Id -1
Feb 16 12:00:04.041: dot1x-ev:dot1x_port_authorized: clearing HA table from vlan 1
Feb 16 12:00:04.049: dot1x-ev:dot1x_port_authorized: Added 0006.1bdb.6a09 to HA table on vlan 1
Does anyone know what we could have missed?
Thank’s

solved
It was just missing the command
aaa authorization network default group XXXX

IP address Pool in ACS 5.1

Hi,
Does anyone knows if it is possible to configure IP Pools on ACS 5.1 so that we can assign those addresses to VPN users using the Policy Elements/Access Policies?
I managed to configure static addresses for single users, but not a pool of addresses to a group of them
Thanks

Hi,
Unfortunately, In ACS 5.1, IP pool feature is not supported, please refer to the release notes, under the section 'Features Not Supported':
Relaese Notes
http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_system/5.1/release/notes/acs_51_rn.html#wp122068
HTH
JK
Plz rate helpful posts-

Thread pool with AT MOST one thread at a time

Hi,
I want to create a pool that creates at most one thread when it is needed. I want the pool to terminate the thread when it is idle for some time. Executors.newSingleThreadExecutor() creates a thread pool with one thread, but this thread doesn't die if idle...
The code below also doesn't work - no thread is ever created:
new ThreadPoolExecutor(0, 1, 30, TimeUnit.SECONDS,
                          new LinkedBlockingQueue<Runnable>());Thanks in advance

Use Future.get().
package net.jcip.examples;
import java.util.concurrent.*;
import static java.util.concurrent.TimeUnit.NANOSECONDS;
* RenderWithTimeBudget
* Fetching an advertisement with a time budget
* @author Brian Goetz and Tim Peierls
public class RenderWithTimeBudget {
    private static final Ad DEFAULT_AD = new Ad();
    private static final long TIME_BUDGET = 1000;
    private static final ExecutorService exec = Executors.newCachedThreadPool();
    Page renderPageWithAd() throws InterruptedException {
        long endNanos = System.nanoTime() + TIME_BUDGET;
        Future<Ad> f = exec.submit(new FetchAdTask());
        // Render the page while waiting for the ad
        Page page = renderPageBody();
        Ad ad;
        try {
            // Only wait for the remaining time budget
            long timeLeft = endNanos - System.nanoTime();
            ad = f.get(timeLeft, NANOSECONDS);
        } catch (ExecutionException e) {
            ad = DEFAULT_AD;
        } catch (TimeoutException e) {
            ad = DEFAULT_AD;
            f.cancel(true);
        page.setAd(ad);
        return page;
    Page renderPageBody() { return new Page(); }
    static class Ad {
    static class Page {
        public void setAd(Ad ad) { }
    static class FetchAdTask implements Callable<Ad> {
        public Ad call() {
            return new Ad();
}

Connection Pool with Variables

Hi i am a newbie to Obiee and i want to know how to import tables into a connection pool with variables in place of Data Source Name: valueof(DSN_DM) username:value of(DSN_DM_USER)
like that i want to import my new tables into this connection pool how i can do that. i tried importing but it is coming as a new subject area.
Can any Body help me
Thanks

Hi copter,
Firstly you imported some tables and again as adding tables your are using variable in connection pool and importing tables then it takes as a new subject area only.....Instead use this variable connection pool to import all tables from scratch and then work on it.This would do.
Either if it is a seperate subject area pull the columns needed from both the subject areas and work on it.Before doing that you need to establish joins between the subject area tables.
http://forums.oracle.com/forums/thread.jspa?threadID=1123247&tstart=-1
hope helps you.
Cheers,
KK

EAP-TLS authentication with ACS 5.2

Hi all,
I have question on EAP-TLS with ACS 5.2.
If I would like to implement the EAP-TLS with Microsoft CA, how will the machine and user authentication take place?
Understand that the cert are required on both client and server end, but is this certificate ties to the machine or ties to individual user?
If ties to user, and I have a shared PC which login by few users, is that mean every user account will have their own certificates?
And every individual user will have to manually get the cert from CA? is there any other method as my environment has more than 3000 PCs.
And also if it ties to user, all user can get their cert from CA with their AD login name and password, if they bring in their own device and try to get the cert from CA, they will be able to successfully install the cert into their device right?
Hope you guys can help on this. THanks.

Yes, you can configure:
machine authentication only
user authentication only
Machine and user authentication.
Machine or user authentication
So machine authentication only is quite common scenarion. Correct, as long as machine is a part of a domain, you will be authenticated via machine authentication.
PEAP-based machine authentication uses PEAP (EAP-MS-CHAPv2) and the password for the computer established automatically when it was added to the Microsoft Windows domain. The computer sends its name as the username and the format is:
host/computer.domain
If the machine is a valid machine in the domain then during the boot process, once the HAL is loaded, the system begins loading device drivers to support the various hardware devices configured on the client in question. After loading the device drivers, the network interface is initialized. At this point, machine start getting ip address and once it done, the user may have access to most of the network.
Regards,
Jatin

WLC 4402-50 with ACS 3.3

Hi,
We want to use ACS to authenticate an ssh or http connection to a WLC 4403-50 4.2.99 using TACACS+. On our ACS 4.2 test server it works fine. Configured identically on an ACS 3.3 appliance we are not able to log in although we do see a successful login in the Passed Authentications report withing ACS.
Is there an incompatability between the WLC 4402-50 with ACS 3.3?
thanks
Bob

The Cisco Secure Access Control Server (ACS) provides authentication, authorization, and accounting (AAA) services for users of the wireless network.
It is also possible to employ a WLC controller strategy that uses an N+1 approach. When using N+1 architecture, each WLC is configured with a WLC that is designated as a backup WLC in the event of a failure. This controller is not used until there is a failure event upon which all APs using the failed controller switch to the backup WLC. This cost-effective approach provides a high level of availability in the event of a single WLC failure scenario.

IP Pool with ACS 4.1

Similar Messages

Maybe you are looking for