https://community.cisco.com/t5/network-access-control/acs-5-2-not-matching-authorization-policies/m-p/2783082#M40792 <P>Hi! I have&nbsp;<SPAN>CSCuo93378 problem to, but after restarting ACS services in supported browsers all policies, conditions&nbsp;still</SPAN>&nbsp;not displaying. And in&nbsp;Access Plicies<SPAN>&nbsp;&gt;&nbsp;Default Device Admin &gt; Group Mapping &gt; rule based result selection &gt; customization (right bottom corner) &gt;&nbsp;can't see any&nbsp;attribute and can't create any rule (and can't see old rules). Is any other&nbsp;ways to solve this problem?&nbsp;</SPAN></P> Fri, 17 Jun 2016 01:58:18 GMT akarashov 2016-06-17T01:58:18Z https://community.cisco.com/t5/network-access-control/acs-5-2-not-matching-authorization-policies/m-p/2783078#M40788 <P>I have a fairly simple lab environment with ACS 5.2, where I have 2 identity groups and 2 device types, where I want users in one identity group to be able to authenticate only on devices in the corresponding device type. I have my policies in place but the ACS is not matching any of them and goes to the default policy instead. Even going to the default policy, I set the action to DenyAccess, and yet it still allows access. Has anyone had something similar?&nbsp;</P> Mon, 11 Mar 2019 06:25:11 GMT https://community.cisco.com/t5/network-access-control/acs-5-2-not-matching-authorization-policies/m-p/2783078#M40788 lpavon0312 2019-03-11T06:25:11Z https://community.cisco.com/t5/network-access-control/acs-5-2-not-matching-authorization-policies/m-p/2783079#M40789 <P>If you're using Chrome as a browser to manage your ACS then here is a defect that matches your scenario. Lot of customer come across this issue last year. However in the latest codes of ACS this defect has been fixed.</P> <P>CSCuo93378&nbsp;&nbsp;&nbsp; Certain browsers cause ACS database corruption</P> <P>Use <A href="http://www.cisco.com/c/en/us/td/docs/net_mgmt/cisco_secure_access_control_system/5-2/device_support/sdt52.html#wp73725">supported browser</A> and check whether all policies and its rules and conditions are displayed correctly and resubmit all of them. Restart ACS services to get the latest changes into effect. After that test again and it should work fine for you.</P> <P>Let me know if you have any questions.</P> <P>~ Jatin</P> <P></P> Sat, 23 Jan 2016 21:23:48 GMT https://community.cisco.com/t5/network-access-control/acs-5-2-not-matching-authorization-policies/m-p/2783079#M40789 Jatin Katyal 2016-01-23T21:23:48Z https://community.cisco.com/t5/network-access-control/acs-5-2-not-matching-authorization-policies/m-p/2783080#M40790 <P>Thank you so much Jatin, you were right that was it. I just restarted de ACS server and it worked right up. Now, how do I reference an external identity source in one of this policies? For instance I want the users from active directory only authenticating with one device type?&nbsp;</P> Sat, 23 Jan 2016 23:02:07 GMT https://community.cisco.com/t5/network-access-control/acs-5-2-not-matching-authorization-policies/m-p/2783080#M40790 lpavon0312 2016-01-23T23:02:07Z https://community.cisco.com/t5/network-access-control/acs-5-2-not-matching-authorization-policies/m-p/2783081#M40791 <P>Awesome !!</P> <P>For your second question ... Click on identity &gt; select rule based result selection &gt; click on customization (right bottom corner) &gt; move the attribute on the right hand side you want to use in your condition ( device type for example) &gt; click OK &gt; Create a rule as per your requirement.</P> <P>~ Jatin</P> Sun, 24 Jan 2016 01:55:44 GMT https://community.cisco.com/t5/network-access-control/acs-5-2-not-matching-authorization-policies/m-p/2783081#M40791 Jatin Katyal 2016-01-24T01:55:44Z https://community.cisco.com/t5/network-access-control/acs-5-2-not-matching-authorization-policies/m-p/2783082#M40792 <P>Hi! I have&nbsp;<SPAN>CSCuo93378 problem to, but after restarting ACS services in supported browsers all policies, conditions&nbsp;still</SPAN>&nbsp;not displaying. And in&nbsp;Access Plicies<SPAN>&nbsp;&gt;&nbsp;Default Device Admin &gt; Group Mapping &gt; rule based result selection &gt; customization (right bottom corner) &gt;&nbsp;can't see any&nbsp;attribute and can't create any rule (and can't see old rules). Is any other&nbsp;ways to solve this problem?&nbsp;</SPAN></P> Fri, 17 Jun 2016 01:58:18 GMT https://community.cisco.com/t5/network-access-control/acs-5-2-not-matching-authorization-policies/m-p/2783082#M40792 akarashov 2016-06-17T01:58:18Z https://community.cisco.com/t5/network-access-control/acs-5-2-not-matching-authorization-policies/m-p/2783083#M40793 <P>Hi,</P> <P>Please check the browser version as well. Kindly check the release notes for the particular ACS version. For ACS 5.2, below are the supported browsers:</P> <P>http://www.cisco.com/c/en/us/td/docs/net_mgmt/cisco_secure_access_control_system/5-2/release/notes/acs_52_rn.html</P> <P></P> <P>Regards,</P> <P>Poonam Garg</P> <P></P> Mon, 20 Jun 2016 07:24:27 GMT https://community.cisco.com/t5/network-access-control/acs-5-2-not-matching-authorization-policies/m-p/2783083#M40793 poongarg 2016-06-20T07:24:27Z