Cisco AAA/Identity/Nac :: Private Key File From ACS 3.3?

Apr 26, 2011

I have my SSL server certficate on my old acs 3.3.along with private key file , How i can export this private file with .pem extension from windows 2000 server , This private key file is not identified under certificate mmc console  , Because my acs application is being installed on a separate hardisk partition under D drive .
file path : d:Certificatesh02cacsw02.pem
how i can export this.pem from that particular folder

View 4 Replies


Cisco AAA/Identity/Nac :: 881 SSH Login Using Only Public / Private Key Levels

Mar 10, 2013

I'm trying to make a setup on my Cisco 881 router, but I'm having some trouble.I've managed to configure logging in with a Public-Private key pair over SSH, but it's also still possible to log in over SSH with just a username and password. I'd like to prevent this, if possible. I imagine I might have manually configured this to be allowed at some point, but I can't quite figure out how I did this, as no matter what I've tried to remove, it keeps allowing this option. I still need to be able to log in with a username, because I want users to have different privileges.
Once I've logged in using the Public-Private key, I don't automatically go into privilege mode, even though the user is configured with a privilege level. I'd like to configure that users that I've configured to use a certain privilege mode, automatically go into privilege mode without a password prompt. I know it did this before I started using the Public-Private key (or before I used AAA, which was configured around the same time), so I wondered if it's possible to do this still.

View 7 Replies View Related

Cisco AAA/Identity/Nac :: ACS 4.2 - Convert Dmp File To Another Format?

Jun 16, 2011

Is there a way where I can just export the clients from one server and restore them onto another?
Is tehre maybe a way to convert the dmp file to another format, like csv, then modifying it and converting back to dmp?

View 3 Replies View Related

Cisco AAA/Identity/Nac :: ACS 5.2 - Cannot Find Backup File

Jan 20, 2013

I had ACS 5.2 ( Evalution License ) setup installed on VMware with patch 11 when I try to restore earlier backup of ACS gives me  error "Cannot find acsbackup_instance.log in the backup file"

I am using Filezilla FTP sever for backup transfer.

View 5 Replies View Related

Cisco AAA/Identity/Nac :: ACS 5.3 - PEM File Parse Error In Win 2003 CA

Jan 31, 2012

I continue to export a Certificate Signing Request for our local CA.  They insist they are getting a parsing error (Invalid algorithm specified) when they cut and past or import the file I send them.  In fact, they have stated that they have had this error with another Linux-based CSR.
I'm not find this issue prevalent on the Internet, so I wonder is this if a user issue on their behalf or the fact that they are using a Win2003 box as a local CA.
How to get a Cisco ACS ".pem" file signed in a local Win2003 CA or advise to an alternative to configuring 802.1x using EAP-TLS?

View 3 Replies View Related

Cisco AAA/Identity/Nac :: ACS 5.0 To 5.1 Upgrade Manifest File Not Found

Mar 3, 2011

I have successfully installed the patch and ADE-OS 1.2 update but when I attempt the 5.1 install via "app install ACS_5.1.0.44.tar.gz local" I get the error "Manifest file not found in the bundle."
Here is a debug of the install:
HOST/admin# app install ACS_5.1.0.44.tar.gz local Do you want to save the current configuration ? (yes/no) [yes] ? Generating configuration...Saved the running configuration to startup successfully6 [30662]: application:install cars_install.c[195]

I created the repository by TFTPing the file to disk:/Upgrade and pointing a repository to disk:/Upgrade. I verified the checksum of the file as it sits on my TFTP server and also manually extracted the file to verify the manifest.xml file is actually there.

View 5 Replies View Related

Cisco AAA/Identity/Nac :: ACS 5.2 License File Installation Failed

Sep 19, 2011

have a  ACS 5.2 version installed on Vmware . I  purchased below  liscense
Product Name                  : L-CSACS-5-LRG-LIC=
Product Description         : L-CSACS-5-LRG-LIC= : ACS 5 Large Deployment License (Electronic Delivery)
When i am trying to upgrade the liscense i am getting an Error " Liscense file installation failed : The liscense file must contain single base liscense "

View 2 Replies View Related

AAA/Identity/Nac :: Log File Size On ACS 5.3 With Nexus 1000v

Sep 13, 2012

how do i set limit on the log file size in ACS 5.3. I had the same issue with Nexus 1000v but there is a command that enables you to set log file nane and size. it is getting bulky.

View 7 Replies View Related

AAA/Identity/Nac :: Add User (mac-addresses) To ACS 4.2 Via RDBMS With CSV File?

Mar 23, 2011

I would like to add user (mac-addresses) to the ACS4.2 via RDBMS with  a .csv file. How can I simultaneously add supplimentary user infos, like Real Name and Description ?

View 3 Replies View Related

Cisco AAA/Identity/Nac :: ACS 4.2. Build15 - Replication Failed With Cannot Access File

Dec 22, 2009

Just upgraded from 4.0 - to 4.2 then to 4.2.1 15. As you may have seen with periovous posts of mine its not been an esay ride.I have now managed to get it all working - backups AAA etc but for some reason i cannot get the replication to work! Its states the following...
Within the Database Replication active log - Error OutBound database replication failed - refer to CSAuth log file.Other lines in the log state  its ok eg - Component logging reports was updated - being replicated to slave...

Please note that the $ is a symbol that i have used because the symbol in the log is strange and i  cannot seem to be able replicate here with this text, for example $etworks - should be networks.

View 4 Replies View Related

Cisco AAA/Identity/Nac :: ACS 1121 Running 5.2 - Edit Hosts File?

Apr 13, 2011

Is it possible to edit the hosts file on an ACS 1121 server running ACS 5.2? Our problem is we have a single domain with multiple domain controllers at different sites. So when the ACS server tries connecting to the domain it randomly picks a domain controller which it can't connect to thus causing it to fail.

View 5 Replies View Related

Cisco AAA/Identity/Nac :: ACS 5.2 Upgrade - Wrong File From Software Download?

Mar 24, 2011

i try to upgrade acs 5.2 with the patch 5-2-0-26-1.tar.tar.Firstly it is not the correct extension when downloading the file from the download software area.then when I enter "patch install 5-2-0-26-3.tar.tar FTP" I get the following error message:
% Manifest file not found in the bundle
I believe the file is not corrupted. 

View 7 Replies View Related

Cisco AAA/Identity/Nac :: ACS 5.1 Import Template Gives File Format Validation Failed

Sep 21, 2011

Network Resources - Network Devices and AAA Clients- File Operations - Add - gives me File Format Validation Faliled. I am carefull to leave the header as it is. The header in the Import Template looks faulty, see attached. When exporting devices I also get the same header as attached. I also tried to change the header so its all in one column, but with same result.

View 1 Replies View Related

Cisco AAA/Identity/Nac :: Applying Patch To ACS5.3 - Change File Extension?

Nov 11, 2012

About to apply a patch for the first time on the ACS 5.3 tonight. Ihave tftp'd it onto a directory i have created on the server. However my support hints i may havre to rename the file ? copy the latest patch file you got from Cisco – you may need to rename as gpg) Current filename is 5-3-0-40-7.tar.tar
So would i need to rename this as 5-3-0-40-7.tar.gpz . If so i will rename it on my pc and redownload it on tftp

View 3 Replies View Related

Cisco AAA/Identity/Nac :: ISE 3395 Upgrade Failing With % Manifest File Not Found In The Bundle

Nov 16, 2011

I am trying to upgrade a brand new ISE 3395 from to 1.0.4 (latest).  It keeps failing with % Manifest file not found in the bundle Here is the output:

company-ise-01/admin# application upgrade ise-appbundle- ftp
Save the current ADE-OS running configuration? (yes/no) [yes] ?
Generating configuration...
Saved the ADE-OS running configuration to startup successfully
Initiating Application Upgrade...
% Manifest file not found in the bundle 

I can't find anything about this for ISE, although there are a lot of topics for the same error for ACS.

View 7 Replies View Related

Cannot Access File Because Another Process Has Locked Portion Of File

Jul 26, 2011

I am working on a Drupal site which is on a virtual server (the way it's been explained to me). I've been told I need to work with it through webdev. So I can copy a file off the server and onto my local machine. I make my edits and then try to upload it to the server. I get locked out with the message: Error 0x80070021: The process cannot access the file because another process has locked a portion of the file. I have tried shutting down my code editor, opening and closing the connection, tried different methods of reaching the server (Cyberduck and through Window's map network feature) to no avail. What can I do?

View 1 Replies View Related

My Private Ip Add Is Been Hacked

Mar 12, 2011

my private ip add is been hacked by someone, I have chk from various sites but the host name is unavailable so pls let me know how to get the host name of that pc & how can i get my ip back to my org

View 1 Replies View Related

Cisco :: Private Address Block -

Apr 11, 2011

how the address stops at 31 in the second octet. I'm not even completely sure how it starts at 16 for the first address ( are we dealing with subnets?

View 10 Replies View Related

Cisco :: Possible To Use 1 Private IP Through VPN And Same Mapped With Public IP?

Aug 25, 2011

Is it possible to use 1 private IP through VPN and same private IP mapped with Public IP? For example is configured in VPN tunnel. i m able to ssh on both ends. ( VPN phase 1 and phase 2 gets completed)But when i map with some public IP problem starts. when i try ssh i see public IP in my destination firewall logs. IPSEC: Received an ESP packet xx.xx.xx.xx "mapped public IP". The decapsulated inner packet doesn't match the negotiated policy in the SA, The packet specifies its destination as

View 2 Replies View Related

Cisco :: Same Private IPs At Two Remote Sites?

Feb 25, 2011

I'm looking to put together a solution for a customer that wants to "bridge" between their current office and a new office space they have rented. I know how to set up a site-to-site VPN between two sites with different private IP ranges. For example, site A is and site B is But is it possible to make both sites appear as a single IP block? This way, systems could be moved one by one without renumbering.I am guessing there might be a way to tunnel the layer 2 traffic and make it work, but I am concerned about broadcast services being broken. I am using non-cisco platforms so I am just looking for pointers on the protocols that might be used so I can do further research.

View 3 Replies View Related

Cisco WAN :: Asa 5510 With Private Ip Address On Wan

Feb 8, 2012

i recently get high speed link for my compagny to replace the old frame realy.the internet service provider gave me a non routable range to set on my asa  like this : [code]then the ISP tell my public ip wan range was x4.23.209.166/29.i made this kind of configuration works when i put a cisco routeur in befor the cisco asa like this: [code] it is possible to make this works on cisco asa 5510 without putting a router in front ?if it works problem can happen to establishing vpn from the outside interface having a private ip ?

View 6 Replies View Related

Cisco Firewall :: ASA 8.4 NAT Internet IP To Private

Mar 22, 2013

I have a server with IP address I have two ISPs and their public IP address subnets are and The gateways are ASA 8.0 and ASA 8.4.I am getting rid of the ISP. However I will need the Internet users to be able to access the server via both ISPs at the same time.The only way I can think of is to do policy based dynamic PAT so the Internet user IPs will be translated into an internal IP. Idealy, users connecting on will be PAT to and users connecting to will be PAT to When the server responds to them, it will then route to the correct ASA..

View 7 Replies View Related

Cisco WAN :: OC-24 Throughput Through Private Line

Nov 22, 2012

we have one OC-24 private line between our data centers. we are looking to get best throughput but we get max. avg throughput of 300Mbps with peaks of 800Mbps throughput. i.e. we transfered 2TB of data over this link and we got average throughput of 300Mbps with peaks of 800Mbps.
we should at least be getting 800Mbps throughput since we have OC-24 (1244Mbps) private line. we contacted our ISP but they said there isn't any problem in private line from ISP side. what can we do to increase average  throughput?

View 10 Replies View Related

Cisco Firewall :: NAT For A Private IP 2911

Dec 20, 2012

We have some Cisco 2911's that we are configuring 2 VPN's ( second is for redundancy) We are pretty confident on the failover VPN setup using SLA monitoring.
One thing we are stuck on is the redundant VPN will be setup over a 3G connection provided by verizon. Verizon issues a Private IP ( 192.168.100.X) the far end device terminating the VPN has a public ip of 183.172.22.XX , what kind of NAT translation do I need to make this work ?  Also does Cisco have any good configuration examples for VPN Failover setups for Cisco 2911's?

View 4 Replies View Related

Make A Private Network?

May 16, 2011

I have a router, networking 2 computers. One of them I wish to set to "ad-hoc" I do not want it accessing the internet.

So, a "wired ad-hoc".

The best discriptsion I have is on a Vista or 7 machine you have the Network map I want to disconect the computer from the internet, and leave it connected to the network.

View 1 Replies View Related

IBM T23 Laptop / Private Ip Addressing?

May 8, 2011

I have a IBM T23 laptop that I have reformatted and am trying to log onto my wireless internet via a linksys pcmcia card which When I try to connect it tells me I have private IP address and I am not sure how I can reconfig so that I can connect via my router to the internet.

View 2 Replies View Related

How To See Files On A Private Network

Oct 11, 2011

I have two Win XP machines. One is connected to the LAN and the other is a standalone. I have installed an additional network card on the machine connected to the LAN. That machine is linked to the standalone through a switch using the sequence of IPs, with as the subnet mask and no DNSWINS, or anything else. I can ping either machine from the other through the private network, but cannot see the files. I need to pull certain files from the standalone, but have not been able to even see them.

View 4 Replies View Related

Wireless :: How To Connect To New Private IP

Feb 9, 2011

I just bought a new IP address but I don't know how to connect the laptop to it. It's a private IP located in the US.

View 3 Replies View Related

Server For Private Network?

Sep 22, 2011

I want to add server(Intel PC with 2.8 P4 processor, 1GB RAM and 80GB harddisk) to my private network (not accessible from outside).I have 50 users in my network ( approximately 30 users login at same time)what simple good things that I could have on the server( website, forum,...) and what OS should I install on it?

View 5 Replies View Related

Cisco WAN :: ASA5505 Converting Private To Public IP For VPN

Aug 18, 2011

We have a VPN router(ASA5505) which connects to the client, B. IP address for one si 195.xx.xx.xx and for B it is 14.xx.xx.xx. Both can extablish a IPSEC VPN nicely.Now, B throws a condition that the IP coming thru the VPN has to be PUblic. They want it as such so that they can be routed across the VPN tunnel.It still can because the firewall does not do NAT.

View 5 Replies View Related

Cisco Routers :: RV042 Connecting Between LAN And DMZ Using Private IPs?

Sep 28, 2012

I'm tryig to put a computer into the DMZ and then access it from computers on the LAN using a local IP address. My reason for doing this is that I'd like my DMZ computer to be a locked down web server (just ports 80 and 443 open to the outside), but I need to be able to have more access to it from inside my LAN (e.g. I want to be able to SSH into it from the LAN).
Thus far I've been able to get a computer set up in the DMZ and can access the Internet from the DMZ computer. And I can access the DMZ computer from the LAN computers using the public address for the DMZ computer. But I can't access the DMZ computer from the LAN computers using a private address for the DMZ computer. see the attached file for a diagram of our current settings. A few descriptions:
- Verizon provides us with a number of static IP addresses, i.e. (note these aren't actually the addresses, but representative).
-- In the RV042, I have the following configurations made:
- Setup > Network > LAN Setting
- Device IP Address =


View 7 Replies View Related

Cisco Firewall :: Map Public IP To Private In DMZ In ASA 5510?

Jul 22, 2012

I am now using ASA 5510 as a firewall device.I have configured 3 interfaces ethernet 0/0,ethernet 0/1,ethernet 0/2 as Wan interface, DMZ interface and Internal Lan interface. Internet is working fine from LAN as well as DMZ.The WAN interface use the Public Point 2 point IP(/30) Provided by the ISP and  another pool of Public Ip is also provided by the ISP (/28). Now I want to Map the /28 IP to some servers in DMZ . DMZ servers currently have private IP . Now the problem is how to Map the Public IP to those Private IP in DMZ servers.

View 9 Replies View Related

Cisco VPN :: ASA5505 VPN Private Network With IP Public

May 19, 2011

My partner imposes that i create a VPN connexion with CISCO ASA5505 and send requests by public IP  on my private network.Is it possible to create NAT rules with this possibility?

View 2 Replies View Related

Copyrights 2005-15, All rights reserved