Problem with Cisco Secure agent instalaltion

Similar Messages

• Problem with Cisco Secure Access Server 3.0

  Hi All,
  Please what is my problem? I use Cisco Secure Access Server Version 3.0 for Windows 2000/NT Servers to authenticate users on our wireless network. I however wish to assign monthly time limits to each user after which he/she will no longer have access until next month or the timer is reset. I tried this with the "User Usage Quota" under User setup. I set the Server to "Limit user to X hours of online time per Month" and enabled the "Use these settings" and also checked the box by the side of the option. I saved and restarted my server. Unfortunetly the settings did not work for all the users whose quotas I set.
  What Am I doing wrong. Please assist.
  Chafe

  Do you have your AP's sending accounting data? If not, ACS has no way of knowing how long they've been online?
  You can utilize your ACS logging to see what your accounting looks like to confirm whether you are receiving accounting packets or not?
  HTH
  Jeff

• Cisco Security Agent unable to close tcp/135 port on Windows hosts

  Hello
  I've encountered with problem that Cisco Security Agent unable to close port TCP/135 on windows PC (XP or Win7).
  I've configured rule module Network Access Control to prevent all client/server connections to port tcp/135.
  I've checked my policy using nmap, so this port (TCP/135) during 20 minutes shows as filtered and i can see log in monitor event on CSA MC, during next 20 minutes it show as opened and no log shows. (time not exact, so it maybe 30 minutes or 5,it varies)
  Can anyone explain how TCP/135 works and is it possible to close it using CSA?
  Thanks in advance

  There is another question for the same issue on the forums (see: CSA 6.0.2.145 problem with windows 7 firewall). I wrote:-
  "I went ahead and tested this in the lab with winXP and CSA 602-149 (latest). I defined a rule with DENY tcp/135 and ran the nmap and it reports opened (wireshark shows syn-ack to the syn). I changed it to a PRIORITY DENY and now the nmap reports closed (wireshark shows reset to the syn). Via the cli, netstat -an shows the pc listening on tcp/135 & disabling CSA the syn gets the syn-ack response. To me this implies a couple of defect. 1: The DENY should block syn to tcp135 & 2: CSA should not send reset (it should be reset). Is it possible to open a TAC case and put my name (mwinnett) in it and I will open a defect."
  Matthew

• With Cisco Secure ACS 4.2 User accounts gets locked at first instance of wrong credentials even if configured for 3 attempts

  Hello Everybody,
  I am working with Cisco Secure ACS 4.2 and it is integrated with Active Directory at a Windows 2008 R2 functional level, user accounts that are set with lockout parameters (3 incorrect attempts) are locked out prematurely after the user enters the wrong credentials just once, the integration is done via LDAP.
  I wonder if anybody has any idea why this is happening, because when I connect to a Cisco device or VPN, and type my password wrongly, on the Active Directory I get extra bad password counts.
  Thanks in advance and regards....

  Hello Scott,
  Thanks for your answer. However we checked the ACS logs and it shows that we entered bad credentials just once, but in the Active Directory our account sometimes is blocked because we get at least 2 and sometimes 3 failures. This problem is only presented when we authenticate Cisco devices or through VPN, in normal circumstances, when users enter bad credentials on their computers, it works fine.
  Thanks and regards...

• NTP Service on Domain Controller have problem with cisco switch

  Hello!
  I  have Windows Server 2008 R2 SP1 Domain Controller with NTP services
  The windows opertion system clients get NTP time ok.
  There are problem with cisco switch, can't get time from NTP.
  Can anybody help me to fix problem?
  C:\Users\Sysuser>w32tm /query /configuration
  [Configuration]
  EventLogFlags: 2 (Local)
  AnnounceFlags: 5 (Local)
  TimeJumpAuditOffset: 28800 (Local)
  MinPollInterval: 6 (Local)
  MaxPollInterval: 10 (Local)
  MaxNegPhaseCorrection: 1800 (Local)
  MaxPosPhaseCorrection: 1800 (Local)
  MaxAllowedPhaseOffset: 300 (Local)
  FrequencyCorrectRate: 4 (Local)
  PollAdjustFactor: 5 (Local)
  LargePhaseOffset: 50000000 (Local)
  SpikeWatchPeriod: 900 (Local)
  LocalClockDispersion: 10 (Local)
  HoldPeriod: 5 (Local)
  PhaseCorrectRate: 7 (Local)
  UpdateInterval: 100 (Local)
  [TimeProviders]
  NtpClient (Local)
  DllName: C:\Windows\system32\w32time.dll (Local)
  Enabled: 1 (Local)
  InputProvider: 1 (Local)
  AllowNonstandardModeCombinations: 1 (Local)
  ResolvePeerBackoffMinutes: 15 (Policy)
  ResolvePeerBackoffMaxTimes: 7 (Policy)
  CompatibilityFlags: 2147483648 (Local)
  EventLogFlags: 0 (Policy)
  LargeSampleSkew: 3 (Local)
  SpecialPollInterval: 3600 (Policy)
  Type: NTP (Policy)
  NtpServer: 10.7.0.4 (Policy)
  NtpServer (Local)
  DllName: C:\Windows\system32\w32time.dll (Local)
  Enabled: 1 (Local)
  InputProvider: 0 (Local)
  AllowNonstandardModeCombinations: 1 (Local)
  VMICTimeProvider (Local)
  DllName: C:\Windows\System32\vmictimeprovider.dll (Local)
  Enabled: 1 (Local)
  InputProvider: 1 (Local)
  Cisco config and errors
  CISCO1#show ntp ass det
  10.7.0.7 configured, insane, invalid, stratum 3
  ref ID 10.7.0.4, time D5BC850F.C8400AB2 (15:50:39.782 MSK Mon Aug 19 2013)
  our mode client, peer mode server, our poll intvl 1024, peer poll intvl 1024
  root delay 62.50 msec, root disp 11128.04, reach 377, sync dist 11218.796
  delay 6.06 msec, offset -467951.1096 msec, dispersion 56.49
  precision 2**6, version 3
  org time D5BC8864.F79C33A7 (16:04:52.967 MSK Mon Aug 19 2013)
  rcv time D5BC8A38.EBDECB39 (16:12:40.921 MSK Mon Aug 19 2013)
  xmt time D5BC8A38.EA5173BE (16:12:40.915 MSK Mon Aug 19 2013)
  filtdelay =     6.06    5.87    3.23    7.90    6.41    5.17   13.03    3.43
  filtoffset = -467951 -467905 -467936 -467885 -467764 -467816 -467707 -467697
  filterror =     0.02   15.64   31.27   46.89   62.52   78.14   93.75   93.78

  Hi,
   >>I gave log on as a service right to this account in Default Domain Controllers Policy but unfortunately it was not enough
  Based on your description, we can try to grant this account Allow log on locally
  user right in the default domain controller policy to see if it helps.
  The policy setting is:
  Computer Configuration\Windows Settings\Security Settings\Local Policies\User Rights Assignment\Allow log on locally
  Allow log on locally
  http://technet.microsoft.com/en-us/library/cc756809(v=ws.10).aspx#feedback
  TechNet Subscriber Support
  If you are TechNet Subscription user and have any feedback on our support quality, please send your feedback here.
  Best regards,
  Frank Shen

• Cisco security agent for Contact center express

  Hi,
  I have Cisco Contact center express version 7 SR 5 running on server with operating server Windows 2003.1.5. Please let me know which version of Cisco security agent is compatible with above mentioned CCX version & OS version.
  I refered to the CCX comaptibilty guide but but I did not get information regarding operating system comaptibility with CSA. Kindly provide the same.
  Also I tried version 5.0.0.235 of CSA it gave error "CIsco works common service is not installed" & insatllation aborted. I do not have CWLMS in network do i need to install some cisco works common services?
  Regards,
  Atul Kaul

  Hi Atul,
  These are the compatible version of CSA with 7.01Sr5. Recommended one is the highest and latest in the list 5.2.0.296-3.1(9)k9. You can install this in the server regardless of the version OS if you have UCCX 7.01 Sr5.
  4.5.1.639-2.0(3)
  4.5.1.645-2.0(4)
  4.5.1.655-2.0(5)
  5.0.0.187-3.0(1)
  5.0.0.205-3.0(3)
  5.0.0.210-3.0(3)
  5.0.0.216-3.0(4)
  5.0.0.217-3.0(5)
  5.0.0.217-3.0(6)
  5.0.0.225-3.0(7)
  5.0.0.232-3.0(9)
  5.0.0.235-3.0(10)
  5.2.0.281-3.1(3)k9
  5.2.0.282-3.1(5)k9
  5.2.0.282-3.1(7)k9
  5.2.0.296-3.1(9)k9
  Thank you
  Rajani Joshi

• Window 8 WiFi problem with Cisco wireless network

  Anyone encounter a Windows 8 WiFi authentication problem with Cisco wireless network?
  We are using WLC 5508, 7.2.111, and AP 3602i with WPA2.
  Sent from Cisco Technical Support iPad App

  This problem occurred with Soney, and Dell models.  Lenovo with Windows 8 factory installed is working fine.
  Won't make any difference as these laptop's wireless NIC cards are different.
  Can you try with OPEN authentication.  If the Sony and/or Dell laptop works, then you start cranking up the security and/or encryption settings until you break them.
  I'm with Scott here:  It's got to be a wireless NIC card driver.
  As what George has stated, post the debug of the failed attempts.

• There is a problem with the security certificate of the proxy server. Error code 18 and 38.

  Hi All,
  After several hours and a short night of sleep I'm out of ideas and hopefully someone here can help me trying to solve this one. First of all the situation:
  Exchange 2013 on a remote location with a CA-certificate.
  Outlook 2010 and 2013 on different locations, locally installed and on RDS.
  When I open Outlook on my laptop all is fine, no errors, good sync, no problem. But when I open Outlook on our Remote Desktop Servers with Outlook 2013 I'm getting errors like "There is a problem with the security certificate of the proxy server. The
  name on the security certificate is invalid or does not match the name of the site. Outlook is unable to connect to this server. (Error code 18)". Opening Outlook 2010 the message is the same, but the error code now is 38.
  After this Outlook opens and is working, there's one more error though. After a while an security warning pops up with the message: "Information you exchange with this site cannot be viewed or changed by others. However, there is a problem with the
  site's security certificate. * The security certificate was issued by a company you have not chosen to trust. View the certificate to determine whether you want to trust the certifying authority. * The security certificate is valid. * The name on the security
  certificate is invalid or does not match the name of the site."
  Strangest thing is, it is the certificate of my RDS! It isn't my valid en officially bought certificate from my mailserver. What's going on? I'm out of options, what I've tried so far (in random order):
  - restarting mailserver and AD;
  - restarting switches;
  - restarting routers;
  - restarting RDS, AD and all other servers;
  - bypassed proxyserver for RDS;
  - created a new profile;
  - checked recently installed updates;
  - checked certificate on mailserver;
  - checked RDS on a different location, working fine.
  Nothing helped, what can I do next? Please advice.
  Regards.

  Found a thread that solves half my problem (https://social.technet.microsoft.com/Forums/office/en-US/70d18244-889a-4d95-ac3f-e234672a82b2/there-is-a-problem-with-the-proxy-servers-security-certificate-error-when-starting-outlook?forum=exchangesvrclients).
  The first message can be suppressed by adding this to the Exchange config:
  set-outlookprovider -Identity EXCH -CertprincipalName msstd:webmail.domain.tld
  set-outlookprovider -Identity EXPR -CertprincipalName msstd:webmail.domain.tld
  Giving the command get-outlookprovider, gives me empty information regarding the certprinipalname. Filled
  this and after recreating the profile or deleting the ost-file I still have the second alert with the local certificate of my RDS.
  Not completely where I want to be, any help regarding the second alert is greatly appreciated!

• Remote desktop connection blocked by cisco security agent

  Hi,
  I have a deployment of a Management Center for Cisco Security Agents 6.0.2 and i just noticed that the agent is blocking the remote desktop connection to the hosts, the agent installed on the server shows me the event but i'm not able to see it logged on the Management Center (i can see logged any other events), i'm not sure what rule should i enable in order to allow this connection.
  Do you have any ideas???
  Thanks in advance...

  Hi,
  Remote desktop connection uses the highest possible security level encryption method between the source and destination.
  In Windows Vista or later versions of Windows, the remote desktop connection uses the SSL (TLS 1.0) Protocol and the encryption is Certificate-based.
  TS Gateway can also make the connection more secure, enhance security, see detailed information in this link
  http://technet.microsoft.com/en-us/library/cc731264(WS.10).aspx
  Don't forget some known offical antii-virus software, they can also protect the connetion from network attack.
  Yolanda Zhu
  TechNet Community Support

• There is a problem with this connection's security certificate The remote computer cannot be authenticated due to problems with its security certificate. Security certificate problems might indicate an attempt to fool you or intercept any data you send

  Hi,
  I have this Windows 2008 R2 on which I installed remoteapp some years ago.
  Now the certificate expired and I get the message
  "There is a problem with this connection's security certificate
  The remote computer cannot be authenticated due to problems with its security certificate.
  Security certificate problems might indicate an attempt to fool you or intercept any data you send to the remote computer."
  How should I renew the certificate? I already went to certification store and tried to renew certificate with same key but then it says "the request contains nor certificate template information".
  Please advise.
  J.
  J.
  Jan Hoedt

  Does the computer account have Enroll permission to the certificate template?
  From the Server running your CA, run mmc, click File then Add/Remove Snap-in...
  Add Certificate Templates and click OK.
  Find the certificate template, then right click and select properties.  On my CA its call ed RemoteDesktopComputers but might be called something different depending on what what template your certificate is based on.
  On the security tab, click Oblect types, check Computers then OK. Enter the Computername and click OK.  Then give your computer account Enroll permisssion.
  HTH,
  JB

• Hi all, I'm still having problems with my security questions as they were not the ones I answered. Now I'm confused

  Still having problems with my security questions as they were not the ones I answered and now I'm confused.

  Howdy Paul,
  If you are having an issue with your Apple ID security questions, you can reset them using the steps in this article -
  If you forgot the answers to your Apple ID security questions - Apple Support
  Thanks for using Apple Support Communities.
  Best,
  Brett L 

• Hi i have a problem with my security question verify email address

  hi,
  i have a problem with my security question verify email address

  If Manage your Apple ID primary, rescue, alternate, and notification email addresses does not help, you can contact the Apple ID Security site from http://support.apple.com/kb/HT5699 or call the AppleCare support number from http://support.apple.com/kb/HE57 and ask to speak with the Account Security Team.

• I have problem with the security question i forgot it some body tell me they will show down of the question forgot the answering but nothing show help me plz thanks

  I have problem with the security question i forgot it some body tell me they will show down of the question forgot the answering but nothing show help me plz thanks

  The reset link will only show if you have a rescue email address (which is not the same thing as an alternate email address) set up on your account : http://support.apple.com/kb/HT5312
  If you don't have a rescue email address (you won't be able to add one until you can answer 2 of your questions) then you will need to contact iTunes Support / Apple to get the questions reset.
  Contacting Apple about account security : http://support.apple.com/kb/HT5699
  When they've been reset (and if you don't already have a rescue email address) you can then use the steps half-way down this page to add a rescue email address for potential future use : http://support.apple.com/kb/HT5312

• I have problem with the security question which i forgot the answer how can i change it as i already have apple id and password

  I have problem with the security question which i forgot the answer how can i change it as i already have apple id and password

  You may reset the password on your account by opening https://iforgot.apple.com/ in Safari and entering your Apple ID (your email address, which the moderators should have removed earlier).
  You won't be able to set the password to your email address, or a recently-used password (if I remember correctly).
  Once you change your password, you should update your password on your iOS device in Settings > iTunes & App Store, then tapping the "Apple ID: <username>" cell at the top to re-enter your password.  (Your iOS device may prompt you for the new password before getting to Settings as well.)
  Hope that helps.  If you have a different issue, please post a follow-up message.

• I have problem with the security questions and i dont know the answer. How i change the questions ?

  I have problem with the security questions and i dont know the answer. How i change the questions ?

  See Here... ask to speak with the Account Security Team...
  Apple ID: Contacting Apple for help with Apple ID account security
  Or Here  >  Apple  Support  iTunes Store  Contact