Steiven,
It sounds like those users who have logged in were using PAT(single ip
nat'ed). If that's the case, then your ACS/pix can only see one single
ip. Only enhance you can change on the pix is to change the time-out to
be as low as you can without annoying users logon process.
-Frank
On Thu, 12 Jul
2001, Steiven Poh-(Jaring MailBox) wrote:
Hello Cisco Folks,
The problem that we face is a lot unusual. We are successfully
configured the PIX with Cicso Secure ACS software on the server and
have created some user ID on the software for the authentication to
access to internet through proxy server. The good thing is it can
immediately ask for the authentication when first time to access to
internet. But when we successfully login it, the next PC to access to
internet, It doesn't ask for any authentication. Just straight away
can access to internet. But after the Time-out period on the PIX, it
will ask again for the authentication.
Looks like once first ID have been logged in, the rest of the user
can go in smoothly without any authentication. This is not logic at
all. I'm not sure wether the problem is occured due to the Cisco
Secure ACS software of the PIX hardware. Any Advice?
Rgds,
Steiven
Message Posted at:
http://www.groupstudy.com/form/read.php?f=7i=12086t=12084
--
FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html
Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]
