Cisco :: Certificate Signing Request For ACS 5.3?

Jan 27, 2013

In order to authenticate wireless users with EAP-TLS or PEAP-MSCHAPv2, what should I select the key length and digest to sign with? 2048 and SHA256 combination should work?

View 9 Replies


ADVERTISEMENT

Cisco AAA/Identity/Nac :: ACS 5.1 - How To Generate Certificate Signing Request On Secondary

Oct 3, 2012

I have a pair of ACS appliances running 5.1 code. The appliances are set up as a replicated pair. I have valid local and trusted certificate authority certificates on the primary.

The trusted certificate authority certificate gets replicated to the secondary. Obviously the local certificate doesn't get replicated. I need to generate a certificate signing request on the secondary but it doesn't seem to allow you to do it.  

View 1 Replies View Related

Cisco VPN :: 3825 - VPN Client Is Giving Error And Unable To Create Certificate Enrollment Request

Feb 21, 2011

We find ourselves in a difficult situation with the Cisco VPN Client version 5.0.07.0290 where it keeps giving us an

"Error 42: Unable to create certificate enrollment request"

When we attempt to use the Online enrollment method to create and enroll a new certificate. There is no additional information in the VPN client logs where we have set 3-High for all logs. In addition, Wire shark does not show any packets sent from the machine running the client to the Cisco 3825 router which runs the Cisco CA.
 
To create and enroll a certificate we do the following:

1. Click on the Enroll button to show the Certificate Enrollment dialog
2. Select  Online
3. Select <New> for Certificate Authority
4. Enter http://192.168.120.1 as CA URL (note, 192.168.120.1 is the IP of the Cisco 3825)
5. Click Next to display the dialog where we can enter certificate details
6. Enter details in all fields except IP Address and Domain
7. Click Enroll which shows a dialog with the Error 42 ... message in it.
 
If we attempt to create a request by using the File method, all works fine, that is, the client creates a file with the enrollment request. The fact that the client does not send any messages to the Cisco CA leads us to believe that we have a problem on the client machine. However, the client does not write any information in the logs, so it is a bit hard to fix the problem. I can provide additional configuration information if required for both the client and the Cisco CA. Note that we have not modified any client configuration. Basically, we installed the client on a Windows 7 64bit machine and attempted the steps listed above.

View 2 Replies View Related

Routers / Switches :: Unable To Access IP - Getting Blank Page After Signing In?

Mar 4, 2011

I tried to log on to my wireless routers IP address but it only gives me a blank page after signing in. the IP address is 192.168.1.1. Is there a problem with this ip address?

View 1 Replies View Related

Cisco AAA/Identity/Nac :: %ASA-3-717009 / Certificate Validation Failed / Certificate Date Is Out-of-range

Jan 30, 2012

There is ASA with remote access VPN and users are authenticated using third party signed certificates (CA is not local in ASA).When user certificate expires i can see it in syslog messages. For example:
 
     %ASA-3-717009: Certificate validation failed. Certificate date is out-of-range, serial number: (...)
 
I would like to know if there is an opportunity to view user's certificate expiry date beforehand, say, 3 days before?

View 3 Replies View Related

Cisco AAA/Identity/Nac :: ISE 1.1.1 Don't Have Certificate Authority Certificate Anymore?

Oct 19, 2012

i am working on ISE 1.1.1, surprisingly i couldn't found certificate authority certifiate at certificate operation anymore.
 
would it be the change on GUI? So now where i can import the CA certificate to ISE?

View 5 Replies View Related

Request For Different IP

Sep 24, 2012

I have IP television at home. I've connected windows box between the tv receiver and modem by using two network cards and brdiging them together. Now, when the request from th tv box comes to the computer, I want to be able to intercept that request and send new request from computer to modem, but request for different ip. So tv box would think that it is playing the requested ip, but in fact it would play the other one.

View 6 Replies View Related

Can't See A Particular IP / Request Timed Out

Feb 1, 2011

Basically my friend has a game server with a particular IP. But lately I don't seem to be able to even 'see' that server. Pinging the IP gets a timeout. I did a tracert on the IP and from the first hop onwards it gives me 3 stars followed by a 'Request Timed Out' until the 30'th hop.

View 15 Replies View Related

Cisco WAN :: 877 - First Ping Request Timed Out

Nov 29, 2010

I have a strange issue where the first ping always times out, but the following goes through fine.I have Cisco877 and connection to the internet is fine. I connect a PC to one of the Fast Ether ports and I am able to ping the router without any issues. However, the moment I ping an external website [URL], the first ping request fails. after that the following request come through quickly.

View 24 Replies View Related

Request Timed Out Every 20-30 Seconds?

Jan 9, 2013

I first noticed it in games, and decided to ping my router in CMD. I see the occasional "request timed out", and not sure how to fix it.My other computers connected to the network are working fine, and I've tried USB Wireless adapters in my laptop which work fine, which implies the problem lies with the inbuilt adapter itself.I've tried reformatting, and updating drivers, but to no avail.I thought maybe the adapter might just be faulty, but then I decided to test it on Linux. I pinged the router in the terminal and... it seemed to work fine. I thought maybe some background process in Windows might be doing something to cause the problem, so I started in safe mode (with networking)... still the problem remained.

View 5 Replies View Related

Cisco Routers :: RV042 / Getting Message 400 Bad Request?

Feb 6, 2012

I am getting the message '400 bad request' whenever I try to backup the configuration or export a certificate under Certificate Management.

View 1 Replies View Related

Cisco WAN :: 1801 - Ping / Request Timed Out

Jun 8, 2011

I have a Cisco 1801 Router, but whenever there is anything plugged into the integrated 8 port switch for example two computers, I cannot get them to ping each other. All of the ports are on the same vLAN.
 
I am a Cisco newbie, so sorry if this question/query is really basic. Is there anyway I can test the integrated switch to see if it is faulty.

View 17 Replies View Related

Cisco VPN :: 5510 / AnyConnect VPN / AD Credential Request?

Feb 20, 2011

I have a problem with my AnyConnect clients connecting to an AD network via a 5510. Anyconnect VPN clients provide AD plus a one time passcode to authenticate to the 5510. This works fine apart from 3 things:
 
1. Once the VPN session has been established the user is further prompted for AD credentials when accessing an AD share for the first time. Once they provide the credentials the share can be accessed. Should the AD credentials not be passed through when the VPN connection is established? Or is this by design? What makes me think it's not be design is the fact that this could be related to problem 2.
 
2. Group Policy Update (windows gpupdate) fails. This again suggests to me that the full client/server relationship is not fully in tact.
 
3. In order to get Outlook to connect to exchange I've had to change Outlooks security settings from Negotiate (which would naturally choose Keberors), to NTLM. Not sure if this is related or not.
 
Note: DNS is functioning with out any problems
 
Maybe the first 2 issues are by design, but I thought the whole idea behind the AnyConnect VPN was that the remote machine would function as if connected to the LAN?

View 1 Replies View Related

Cisco Routers :: RV082 - Blocking Of DNS Request

Jun 7, 2010

I have an RV082 (running  2.0.0.19-tm) set up as the gateway to the Internet on my home LAN, and  connect to it through several switches / hubs around my house.   Randomly, and from various connections around the house (which are all  plugged in to different ports of the RV082), a Web request will fail to  load, giving a "Server not found" error in the browser. When I look  at the log in the RV082, it says, "Connection Refused: Policy  Violation".
 
It  seems to be just blocking the DNS requests - everything else appears to  go through normally. For example, I get the message "Looking up  domain name.com" in the  bottom corner of the browser and the request  fails, displaying the Mozilla "Server not found" error page.  When I  click the "Try Again" button the page, it goes through just fine and  everything  works.
 
I don't have any services running behind the firewall, and  do not use the VPN settings. Here are my current firewall settings: 

Firewall : Enable

View 16 Replies View Related

Cisco Wireless :: No Join Request Going Out With 1131

Aug 10, 2011

Trying to get an lightweight AP to register with a controller, never seen this one before where the Discovery request is going out to the controller, the discovery response is coming back, but then nothing. At this point the AP should then send a JOIN request, but it just doesnt.
 
I am using L3 LWAPP, and have the AP statically configured. its a 1131, connecting to a 5.1.151.0 in a WISM. I have run a wireshark and can see the discovery going out, its response coming back, but then nothing (the debugs below also back this up). I have also jumped on the controller and can see the discovery responces are going out but it says no JOIN's are coming in. I'm aware this is an old version of controller but still..
 
I've tried many different IOS on the AP, including the one it came with in the box, other previously successful IOS and the IOS that 5.1.151.0 dishes out to its registered AP's, multiple AP hardware resets, controller reboots, tried different controllers. etc... What would cause this? Possibly something in the response? See info below:
 
AP
LWAPP Static IP Configuration
IP Address         172.18.240.244
IP netmask         255.255.255.192
Default Gateway    172.18.240.193
[Code]....

View 8 Replies View Related

Servers :: PC Won't Submit Request For Information

Mar 30, 2011

request for registration - wont submit - nothing happaens

View 1 Replies View Related

TCP Window Scaling Factor Not Always Set In SYN Request?

Jul 10, 2011

I am facing strange behavior in Windows 7 and Windows Vista.I have a client program in my PC and server program outside network.I can see that some time TCP WINDOWS SCALING working and some time not.In first Log after 3 way handshakes established I can see data transfer happening bocs from log I can see it is settings SCALING factor.

But for some cases where I see that connection happened but data transfer not happening (May be my network does not work without Scaling..) I can see my WINSOWS TCP stack has not set SCALING in SYN request.Hence in 2 nd log I can see "Scale factor not supported"...though I enabled SCALING in my WINDOW .

You can see in 2nd log :: [ Win=8192 ( ) = 8192 ] - not settings scaling factor some time.How to fix this issue so that Windows 7 / Vista always set SCALING in SYN request.

My TCP Settings :::

Receive-Side Scaling State : enabled
Chimney Offload State : automatic
NetDMA State : enabled[code].....

View 1 Replies View Related

Any Application For Remote Request Handling

May 22, 2012

We have a Terminal Server through which everyone access their outlook. To avoid any impact on its performance, we have disabled the IE in it. Everyone access the terminal server using the Remote desktop.For the above mentioned setup, is there any way to make the weblinks in the remote machine to get open in the main machine? Main Machine or the Local Machine runs with Windows 7 OS.

View 3 Replies View Related

Request Timeout On Network Connection

May 21, 2012

Request timeout on network connection

View 4 Replies View Related

Actiontec V1000H No Request Found?

Sep 19, 2012

I tried to forward a new port on my Actiontec V1000H router. I was able to sign in without incident, but the moment I tried to begin navigating within pages, I would be greeted with a red screen reading '400 Bad Request - No request found' roughly 60% of the time. Usually refreshing the page a number of times would allow me to proceed, but because the Telus software for the V1000H cycles through so many pages when applying a new forwarded port to the firewall, it's almost statistically impossible to make it through.I have no issues with internet connectivity, and having this port forwarded isn't critical, but this problem is a real nuisance as it turns changing any router settings into a long, tedious, and sometimes downright impossible chore.

View 5 Replies View Related

Connect To Computer Over Http Request?

Mar 22, 2011

I have been doing a lot of research trying to find like an IT program to RDP for free to very little for personal use that is very easy to understand for the end user.An example of what I what I am speaking of, is if you deal with Verizon, or most major computer companies (Dell, etc) they can send you a URL or give you a code to use at a site, that basically lets them remote to your PC. It may require the user to install a small add on, or to allow some type of permissions, but doesn't require them to download huge programs or sign up for accounts.

I myself will create an account of course, and as I said even pay a small fee for a good program. But it's strictly for personal use and I am sure there is a good open source program I can use that I can just make a donation to.

View 6 Replies View Related

D-Link DIR-825 :: Request Of New Category Or Forum For DIR-815

Nov 8, 2010

I bought a Dlink DIR-815 the firmware version is 1.0 and not see any info in D-linlk support site inclusive the original firmware is not there. So I request to create a new forum topic for this hardware, I am replacing a DGL-4500 with this brand new model and we need other users have a good place to share info.

View 14 Replies View Related

AAA/Identity/Nac :: Status-Server Request And ACS SE 4.2?

Mar 31, 2013

According to traces collected in mt ACS SE 4.2, it would seem that the underlying software does not support the RADIUS Status-Server request. Is this request type is supported in version 5.*?

View 2 Replies View Related

Cisco :: Newly Joined Computer To Request IP Address From MAC?

Mar 13, 2012

RARP (Reverse Address Resolution Protocol) is a protocol by which a physical machine in a local area network can request to learn its IP address from a gateway server's Address Resolution Protocol (ARP) table or cache. A network administrator creates a table in a local area network's gateway router that maps the physical machine (or Media Access Control - MAC address) addresses to corresponding Internet Protocol addresses.When a new machine is set up, its RARP client program requests from the RARP server on the router to be sent its IP address. Assuming that an entry has been set up in the router table, the RARP server will return the IP address to the machine which can store it for future use.Among the passage of words i read, there was this sentence i were not sure, "A network administrator creates a table in a local area network's gateway router that maps the physical machine (or Media Access Control - MAC address) addresses to corresponding Internet Protocol addresses." Does it means each time a host computer joins in the ethernet LAN, the network administrator would manually add in it's MAC address in the router table, so it would allow the newly joined computer to request IP address from it's MAC address?

View 1 Replies View Related

Cisco 3560 :: Scanner Flooding The Network With Arp Request?

Oct 7, 2011

I have a Canon ScanFront 220 network scanner that seems to have a problem with our network. It's plugged into a Cisco 3560. The network is operational, just chatty.

A wireshark session for just a few seconds looks like this: (192.168.81.42 is the scanner)
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.89 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.90 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.91 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.92 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.93 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.94 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.95 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.96 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.97 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.98 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.99 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.101 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.102 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.103 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.104 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.106 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.108 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.109 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.110 Vlan81
1w4d: IP ARP: rcvd req src 192.168.81.42 0000.8583.2c43, dst 192.168.81.111 Vlan81

I can't find anything on the scanner that would cause this.

View 3 Replies View Related

Cisco AAA/Identity/Nac :: ASC5.2 - How To Tell Which Domain Controller Request Is Sent

Sep 12, 2011

Within ACS 5.2, does any know of a way to see which specific domain controller a request is sent to?

View 1 Replies View Related

Cisco Firewall :: ASA (8.4) / Redirect Outside IP Request To Inside Host

Mar 27, 2012

Wondering if on the ASA (8.4) its possible to do something like what DNS rewrite does, but with IP requests.  Scenario.  Mobile phone accesses a web app inside our network fine over cellular.  Once it comes inside on to wifi it still has the public IP address cached so the ASA doesn't allow its request to loop around and the app appears broken.  We're considering lowering the TTL on the DNS host entry but I think we are battling phones/mobile OS's that don't have a strict adherence to name resolution standards.  A lot just seem  to refresh their caches every 10-15 minutes.

View 4 Replies View Related

Cisco WAN :: 1841 How To Log Incoming And Outgoing HTTP Request

Dec 12, 2010

I have a CISCO 1841 ROUTER and sins short our internet speed has decreased dramatically , it does not happens all the time , so I am sure it is not the ROUTER.I have put a small router (CISCO WRT 610N) and it was the same.When I look to the UP and DOWNLOAD GRAPH from my ISP , I see really BIG peeks.

View 2 Replies View Related

Cisco Switching/Routing :: Nexus 5548 ARP Request

Feb 7, 2012

I have Nexus 5548UP, Version version 5.0(3)N2(2b), with a flat configured network. Customer has put several IP subnets on one Vlan. In one subnet is an Siemens SPS wich connects to a Server. This SPS is not reachable since I send a ping from the N5k, then everything works fine. Sniffering that port no arp requests from the N5k are captured. That hapens with every device (Siemens SPS) in the network. Every other clients and server are working fine and there are no problems.

View 1 Replies View Related

Cisco Firewall :: ASA 8.2(5)26 - ICMP Echo Request Denied On Outside?

Jan 14, 2013

I'm having problem getting ICMP echo monitoring on outside interface to work. I've set: icmp permit host monitoring_station_adress outside but I still get:

%ASA-3-313001: Denied ICMP type=8, code=0 from monitoring_station_adress on interface outside. I'm trying to directly monitor ip on ASAs interface outside.
 
I have access-group tied to "in" direction on interface outside. Do I still have to put "permit icmp" rules despite the fact that icmp permit outside command is set?

View 4 Replies View Related

Cisco Firewall :: ASA 8.4 Port Forward Command Request?

May 7, 2013

i can't do it with ASDM and try to use command but still fail
 
nat (inside,outside) source static inside-10.18.20.162 4F-1.1.1.2
 
it is working fine for the above command if there is more than one public ip, in case 1.1.1.1 is for firewall interface public ip?if i have only one public ip and i would like to forward http traffic to my internal network? how can i use command to do that?

View 8 Replies View Related

Cisco WAN :: 877 ADSL Router - DHCP Request Not Send

Jan 18, 2013

I'm trying to relace my isp modem by a cisco 877 adsl router..
 
The internet part is already done is working fine... however... there is also an seperate pvc for the voice part.
 
The pvc is working with the MER protocol... the thing now is... when i'm trying to get an ip address by dhcp on the sub atm interface nothing happen..
 
I did an debug dhcp detail and see that the router is first sending correctly an dhcp discover,the isp is replying to this with an dhcp offer i see my ip address,subnet mask and gateway addresses however.. the router isn't replying anymore with an dhcp request... so nothing happens anymore..

View 1 Replies View Related

Can't Access Favorite Website - Error 400 Bad Request

Jul 28, 2012

I have been unable to access a frequently used website (by me) for well over a week. Every time I attempt access I get this error message:

"Error 400 Bad Request

Bad Request

XID: 865749824

O: web

GN: ch-sc-bb-shield1

The web server is responding too slowly to service your request. Please try again later."

PC clone, 4GB, Windows 7 64-bit. Is it possible that my 64-bit version is at fault? I have had some problems with it since I upgraded form the 32-bit version.

View 3 Replies View Related







Copyrights 2005-15 www.BigResource.com, All rights reserved