topic Re: CSA MC locked out after LDAP in Network Security

CSA MC locked out after LDAP

james.pedersen — Sun, 10 Mar 2019 10:41:20 GMT

I just tried to enable the LDAP authentication for my CSA MC 5.1 and selected fall back authentication for the local admin account but now neither LDAP or local admin authentication works. How can I do password recovery on CSA MC?

Re: CSA MC locked out after LDAP

tsteger1 — Tue, 10 Jul 2007 18:53:20 GMT

You already had a local administrator account matching the LDAP account, correct?

You should be able to change the authentication back to local and login using the local credentials.

I don't know of any password recovery methods if that doesn't work ... maybe time to TAC?

Tom

Re: CSA MC locked out after LDAP

james.pedersen — Tue, 10 Jul 2007 19:07:21 GMT

Thanks for the reply and I have opened a TAC case in the mean time. Unfortunatly, there is a bug (CSCse89346) in CSAMC 5.1 prior to build 95, I think, that doesn't allow failover to local authentication. The fix was to upgrade to 5.1.100. After the upgrade and reboot, I was able to login again.

Re: CSA MC locked out after LDAP

tsteger1 — Tue, 10 Jul 2007 19:09:59 GMT

Cool, glad to hear it.

Re: CSA MC locked out after LDAP

TradeSecrets — Wed, 11 Jul 2007 13:04:23 GMT

Don't use LDAP auth,

There is a bug that allows you to circumvent LDAP and log onto the system.

Cisco has release a patch.