https://community.cisco.com/t5/network-access-control/acs-4-2-1-authentication-and-database-replication/m-p/1607079#M294738 <HTML><HEAD></HEAD><BODY><P>Thanks for the two links, with regards to the WLC authentication I can see a passed authentication in the log files and hence my confusion. The authentication appears (well its in the log file, correct username/NAS IP Address/time) to pass, and there is nothing in the failed logs, so its getting to the ACS passing the authentication but still the WLC does not let me in.</P><P></P><P>Thanks again.</P></BODY></HTML> Mon, 28 Mar 2011 20:18:14 GMT IAIN HILL 2011-03-28T20:18:14Z https://community.cisco.com/t5/network-access-control/acs-4-2-1-authentication-and-database-replication/m-p/1607077#M294732 <P><!--[if gte mso 10]> <style> /* Style Definitions */ table.MsoNormalTable {mso-style-name:"Table Normal"; mso-tstyle-rowband-size:0; mso-tstyle-colband-size:0; mso-style-noshow:yes; mso-style-priority:99; mso-style-qformat:yes; mso-style-parent:""; mso-padding-alt:0cm 5.4pt 0cm 5.4pt; mso-para-margin:0cm; mso-para-margin-bottom:.0001pt; mso-pagination:widow-orphan; font-size:11.0pt; font-family:"Calibri","sans-serif"; mso-ascii-font-family:Calibri; mso-ascii-theme-font:minor-latin; mso-fareast-font-family:"Times New Roman"; mso-fareast-theme-font:minor-fareast; mso-hansi-font-family:Calibri; mso-hansi-theme-font:minor-latin; mso-bidi-font-family:"Times New Roman"; mso-bidi-theme-font:minor-bidi;} </style> <![endif]--></P><P class="MsoNormal">I have a couple of questions/issues. Firstly the ACS 4.2.1 <SPAN> </SPAN>for Windows database replication does any one have and documentation on the processes required?</P><P></P><P class="MsoNormal"></P><P></P><P class="MsoNormal">Secondly I have a single system installed which is providing TACACS authentication for management access to a Cisco 5508 WLC, the controller prompts with a login box on connection to the web interface. <SPAN> </SPAN>When you put in the username and password pair the box comes back as if the authentication has failed. On the ACS I was unable to see any failed authentications so enabled passed authentication reporting and can see the user passing the process. The WLC is running software version 6.0.199.4. On the ACS I have added the extra two options within the TACACS interface configuration and have a ‘role1=all’ against both the user and the group the user is part of so I am confused as to why the user is still denied access.</P><P></P><P class="MsoNormal"></P><P></P><P class="MsoNormal">Anyone any help with either would be gratefully received.</P> Mon, 11 Mar 2019 00:56:55 GMT https://community.cisco.com/t5/network-access-control/acs-4-2-1-authentication-and-database-replication/m-p/1607077#M294732 IAIN HILL 2019-03-11T00:56:55Z https://community.cisco.com/t5/network-access-control/acs-4-2-1-authentication-and-database-replication/m-p/1607078#M294735 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>The link below gives details of replication:</P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2.1/User_Guide/SCAdv.html#wp755988">http://www.cisco.com/en/US/docs/net_mgmt/cisco_secure_access_control_server_for_windows/4.2.1/User_Guide/SCAdv.html#wp755988</A></P><P></P><P>The following link gives configuration of replication:</P><P><A class="jive-link-external-small" href="http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00800e518a.shtml">http://www.cisco.com/en/US/products/sw/secursw/ps2086/products_configuration_example09186a00800e518a.shtml</A></P><P></P><P>If the ACS failed and passed authentication is showing no log then the request is not reaching the ACS.</P><P></P><P>Could you please cross check your configuration on the WLC.</P><P></P><P>Hope this helps.</P><P></P><P>Regards,</P><P>Anisha</P><P></P><P>P.S.: please mark this thread as answered if you feel your query is resolved. Do rate helpful posts.</P></BODY></HTML> Mon, 28 Mar 2011 16:10:49 GMT https://community.cisco.com/t5/network-access-control/acs-4-2-1-authentication-and-database-replication/m-p/1607078#M294735 andamani 2011-03-28T16:10:49Z https://community.cisco.com/t5/network-access-control/acs-4-2-1-authentication-and-database-replication/m-p/1607079#M294738 <HTML><HEAD></HEAD><BODY><P>Thanks for the two links, with regards to the WLC authentication I can see a passed authentication in the log files and hence my confusion. The authentication appears (well its in the log file, correct username/NAS IP Address/time) to pass, and there is nothing in the failed logs, so its getting to the ACS passing the authentication but still the WLC does not let me in.</P><P></P><P>Thanks again.</P></BODY></HTML> Mon, 28 Mar 2011 20:18:14 GMT https://community.cisco.com/t5/network-access-control/acs-4-2-1-authentication-and-database-replication/m-p/1607079#M294738 IAIN HILL 2011-03-28T20:18:14Z https://community.cisco.com/t5/network-access-control/acs-4-2-1-authentication-and-database-replication/m-p/1607080#M294740 <HTML><HEAD></HEAD><BODY><P>Hi,</P><P></P><P>The issue seems to be with the WLC. i would suggest asking this question in the wireless forum as there will be more people who will be aable to answer this question of yours.</P><P></P><P>Hope this helps.</P><P></P><P>Regards,</P><P>Anisha</P><P></P><P>P.S.: please mark this thread as answered if you feel your query is resolved. Do rate helpful posts.</P></BODY></HTML> Tue, 29 Mar 2011 14:30:08 GMT https://community.cisco.com/t5/network-access-control/acs-4-2-1-authentication-and-database-replication/m-p/1607080#M294740 andamani 2011-03-29T14:30:08Z