Steiven,
It sounds like those users who have logged in were using PAT(single ip
nat'ed). If that's the case, then your ACS/pix can only see one single
ip. Only enhance you can change on the pix is to change the time-out to
be as low as you can without annoying users logon process.
-Frank
On Thu, 12 Jul
2001, Steiven Poh-(Jaring MailBox) wrote:
> Hello Cisco Folks,
>
> The problem that we face is a lot unusual. We are successfully
> configured the PIX with Cicso Secure ACS software on the server and
> have created some user ID on the software for the authentication to
> access to internet through proxy server. The good thing is it can
> immediately ask for the authentication when first time to access to
> internet. But when we successfully login it, the next PC to access to
> internet, It doesn't ask for any authentication. Just straight away
> can access to internet. But after the Time-out period on the PIX, it
> will ask again for the authentication.
>
> Looks like once first ID have been logged in, the rest of the user
> can go in smoothly without any authentication. This is not logic at
> all. I'm not sure wether the problem is occured due to the Cisco
> Secure ACS software of the PIX hardware. Any Advice?
>
> Rgds,
> Steiven
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7&i=12086&t=12084
--------------------------------------------------
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
