topic Changed my AD password now cant get into enable !!! in Network Access Control https://community.cisco.com/t5/network-access-control/changed-my-ad-password-now-cant-get-into-enable/m-p/1823593#M227581 <HTML><HEAD></HEAD><BODY><P>Steve,</P><P></P><P>Just out of curiosity can you verify your user account in ACS and make sure that the enable password is set to use external database?</P><P></P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2/user/guide/UsrMgt.html#wp273989">http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2/user/guide/UsrMgt.html#wp273989</A></P><P></P><P>Thanks,</P><P>Tarik Admani</P></BODY></HTML> Fri, 30 Dec 2011 17:36:47 GMT Tarik Admani 2011-12-30T17:36:47Z Changed my AD password now cant get into enable !!! https://community.cisco.com/t5/network-access-control/changed-my-ad-password-now-cant-get-into-enable/m-p/1823592#M227561 <P>Hi</P><P></P><P>Changed my AD password and now i cannot get into the enable side of the cisco switches on our network (we have no routers).</P><P></P><P>Looking on the logs for the ACS v4.2 I can see the following -</P><P></P><P></P><P>On TACACS+ Accounting you can see the connections which have worked - it the initial tty connections - </P><P></P><P>When i look in the failed attempts i see the following -</P><P>Auth failed -&nbsp; External&nbsp; DB user invalid or bad password&nbsp; or on another occasion internal error</P><P>or EAP-TLS or PEAP authentication failed due to unknown CAcertificate during SSL handshake.</P><P></P><P>Anyone seen this before ?</P><P></P><P>Steve</P> Mon, 11 Mar 2019 01:40:20 GMT https://community.cisco.com/t5/network-access-control/changed-my-ad-password-now-cant-get-into-enable/m-p/1823592#M227561 steve switzer 2019-03-11T01:40:20Z Changed my AD password now cant get into enable !!! https://community.cisco.com/t5/network-access-control/changed-my-ad-password-now-cant-get-into-enable/m-p/1823593#M227581 <HTML><HEAD></HEAD><BODY><P>Steve,</P><P></P><P>Just out of curiosity can you verify your user account in ACS and make sure that the enable password is set to use external database?</P><P></P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2/user/guide/UsrMgt.html#wp273989">http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2/user/guide/UsrMgt.html#wp273989</A></P><P></P><P>Thanks,</P><P>Tarik Admani</P></BODY></HTML> Fri, 30 Dec 2011 17:36:47 GMT https://community.cisco.com/t5/network-access-control/changed-my-ad-password-now-cant-get-into-enable/m-p/1823593#M227581 Tarik Admani 2011-12-30T17:36:47Z