Filter
Top Products
Chapter 5 VPN and Security Products
5-12
Cisco Secure Access Control Server (ACS) for Windows and Cisco Secure
Cisco Secure Access Control Server (ACS) for Windows and Cisco
Secure Access Control Solution Engine
Cisco Secure Access Control Server (ACS) version 3.2 for Windows, a key component
of Cisco’s Identity Based Networking Services (IBNS) architecture, extends access
security by combining authentication, user/admin access and policy control from a
centralized identity networking framework allowing for greater flexibility and mobility,
increased security, and user productivity gains. Cisco Secure ACS also provides identity
networking support for Cisco Structured Wireless Aware Networks (SWAN), as an
extension of the local authentication provided on Cisco Aironet Access Points. ACS
allows a network administrator to manage and administer user access for Cisco IOS®
routers, virtual private networks (VPNs), firewalls, dial and broadband DSL, cable
access solutions, storage, content, voice over IP (VoIP), Cisco wireless solutions, and
Cisco Catalyst® switches via IEEE 802.1x access control.
Version 3.2 introduces a new, secure, hardware-based offering for Cisco Secure ACS.
The Cisco Secure ACS Solution Engine, a 1-rack-unit (1-RU) security-hardened
solution engine with a preinstalled Cisco Secure ACS license, provides essentially the
same features and functions as the Cisco Secure ACS for Windows, in a dedicated,
application-specific solution engine package. Cisco Secure ACS Solution Engine
provides a z define access control lists of any length, per user or group of users. It
extends per-user access control ero-touch installation and highly reliable AAA solution
with increased total-cost-of-ownership protection through high availability and
simplified day-to-day operation the Cisco Secure ACS service.
When to Sell
Key Features
• Protected Extensible Authentication Protocol (PEAP) support for Microsoft®
Windows and Cisco clients—Provides support for Microsoft® PEAP on Windows
98, NT, 2000 and XP by supporting client authentication with MS-CHAPv2, and
support for Cisco PEAP with one-time token authentication and support of
non-MSCHAP end-user databases such as, NDS, and ODBC.
• EAP mixed configurations—Allows flexible EAP settings to be set concurrently
and processed per the 802.1X protocol presented by the end user. ACS supports
PEAP-EAP-GTC (Cisco PEAP), PEAP-EAP-MSCHAPv2 (Microsoft® PEAP),
EAP-TLS, EAP-MD5, and Cisco EAP Wireless (LEAP).
• Accounting Support for Aironet—Supports user-based accounting from the
Wireless Access Points when they are configured as RADIUS (Cisco Aironet)
AAA clients.
• EAP-TLS enhancements—Extends ACS PKI capabilities with the addition of
EAP-TLS authentication against ODBC user databases, and EAP-TLS silent
session resume support which prevents users from re-authenticating during a
RADIUS session timeout.
Sell This Product When a Customer Needs These Features
Cisco Secure Access
Control Server (ACS)
for Windows and Cisco
Secure Access Control
Solution Engine
• Centrally manage who can log in to the network from wired or wireless connections
• Privileges each user has in the network
• Accounting information recorded in terms of security audits or account billing
• What access and command controls are enabled for each configuration administrator
• Virtual VSA for Aironet rekey
• Secure server authentication and encryption
• Simplified firewall access and control through Dynamic Port Assignment
• Same User AAA services